8 matches found
EUVD-2004-0970
Malware in sbrugna...
SUSE CVE-2004-0972
The lvmcreateinitrd script in the lvm package in Trustix Secure Linux 1.5 through 2.1, and possibly other operating systems, allows local users to overwrite files via a symlink attack on temporary files...
Ubuntu 4.10 : lvm10 vulnerability (USN-15-1)
Recently, Trustix Secure Linux discovered a vulnerability in a supplemental script of the lvm10 package. The program 'lvmcreateinitrd' created a temporary directory in an insecure way, which could allow a symlink attack to create or overwrite arbitrary files with the privileges of the user invoki...
CVE-2004-0972
The lvmcreateinitrd script in the lvm package in Trustix Secure Linux 1.5 through 2.1, and possibly other operating systems, allows local users to overwrite files via a symlink attack on temporary files...
Mandrake Linux Security Advisory : lvm (MDKSA-2004:144)
The Trustix developers discovered that the lvmcreateinitrd script, part of the lvm1 package, created a temporary directory in an insecure manner. This could allow for a symlink attack to create or overwrite arbitrary files with the privileges of the user running the script. The updated packages...
lvm symbolic links
Incorrect temporary directory creation in lvmcreateinitrd и davfs2...
CVE-2004-0972
The lvmcreateinitrd script in the lvm package in Trustix Secure Linux 1.5 through 2.1, and possibly other operating systems, allows local users to overwrite files via a symlink attack on temporary files...
CVE-2004-0972
CVE-2004-0972 concerns the lvmcreate_initrd helper in the Trustix/ lvm package (lvm1) where a temporary-directory creation flaw enables a local attacker to perform a symlink-based overwrite of arbitrary files. The described root cause is insecure handling of temporary files by the script, allowin...