EUVD-2000-0562

Malware in sbrugna...

Mandrake Linux Security Advisory : man (MDKSA-2000:015)

Internet Security Systems ISS X-Force has identified a vulnerability in the makewhatis Bourne shell script that ships with many Linux distributions. It is found in versions 1.5e and higher of man, and handles temporary files insecurely. Local users may gain a variety of privileges depending on th...

CVE-2001-1277

makewhatis in the man package before 1.5i2 allows an attacker in group man to overwrite arbitrary files via a man page whose name contains shell metacharacters...

CVE-2001-1277

The CVE-2001-1277 issue affects the makewhatis component of the man package prior to version 1.5i2. A local attacker belonging to the group man can cause arbitrary files to be overwritten by crafting a man page name containing shell metacharacters, exploiting insufficient validation during proces...

Redhat 7.0 local root (via uucp) (attempt 2)

Affects: RedHat 7.0 possibly others 28 Aug 2001 01:27:24 +1200 uucp vulnerability exposed to vendor 9 Nov 2001 07:14:15 +1300 this makewhatis vulnerability exposed to vendor /usr/sbin/makewhatis An earlier version1 of makewhatis had a fault in the handling of compressed files that allowed executi...

man 'makewhatis' insecurely uses /tmp

Overview The 'makewhatis' script in the Linux man package allows local users to overwrite files via a symlink attack. Description The 'makewhatis' program is a Bourne shell script that ships with many Linux distributions in the 'man' package of programs. The 'makewhatis' script creates files in t...

man 1.5h10 + man 1.5i-4 exploits

This advisory is also stored, along with the exploits at http://generic.labs.pulltheplug.com/zen/ as man.txt ====================================================================== Local root from /usr/bin/man + /etc/cron.daily/makewhatis.cron Redhat 7.0 Redhat 7.1 on other distributions it may al...

Дырка в man (symbolic link)

При работе утилиты makewhatis создаются временные файлы с предсказуемыми именами, что позволяет атаку с помощью символьных линков...

CVE-2001-1277

makewhatis in the man package before 1.5i2 allows an attacker in group man to overwrite arbitrary files via a man page whose name contains shell metacharacters...

CVE-2000-0566

The CVE-2000-0566 issue concerns the makewhatis script in the Linux man package. The attached documents confirm a local-privilege escalation/vector: makewhatis creates files in /tmp with predictable names and can be exploited via symlink attacks to overwrite arbitrary files or gain elevated privi...

CVE-2000-0566

makewhatis in Linux man package allows local users to overwrite files via a symlink attack...

[linux-security] [RHSA-2000:041-02] man package's 'makewhatis' uses insecure handling of files in /tmp

--------------------------------------------------------------------- Red Hat, Inc. Security Advisory Synopsis: man package's 'makewhatis' uses insecure handling of files in /tmp Advisory ID: RHSA-2000:041-02 Issue date: 2000-07-03 Updated on: 2000-07-03 Product: Red Hat Linux Keywords: man /tmp...