Samsung ml85p Printer Driver 1.0 Insecure Temporary File Creation Vulnerability (2)

No description provided by source. source: http://www.securityfocus.com/bid/3008/info ml85p is a Linux driver for Samsung ML-85G series printers. It may be bundled with distributions of Ghostscript. ml85p does not check for symbolic links when creating image output files. These files are created ...

Samsung ml85p Printer Driver 1.0 Insecure Temporary File Creation Vulnerability (3)

No description provided by source. source: http://www.securityfocus.com/bid/3008/info ml85p is a Linux driver for Samsung ML-85G series printers. It may be bundled with distributions of Ghostscript. ml85p does not check for symbolic links when creating image output files. These files are created ...

CVE-2001-1177

CVE-2001-1177 affects the Samsung ML-85G GDI printer driver prior to version 0.2.0. The vulnerability arises from a symlink attack on temporary files, allowing a local attacker to overwrite arbitrary files. The impact is described as a local/privilege-bypass style risk with complete confidentiali...

CVE-2001-1177

ml85p in Samsung ML-85G GDI printer driver before 0.2.0 allows local users to overwrite arbitrary files via a symlink attack on temporary files...

ml85p - driver for Samsung ML-85G and /tmp

ml85p - driver for Samsung ML-85G GDI printers seems to use /tmp unsecurely. it seems to use the time function to determine the /tmp files name. root@linux exp strings /usr/bin/ml85p | grep tmp /tmp/ml85gd 401070dd iopl0x3 = 0 400cf2bd timeNULL = 994462668 40100cbf brk0 = 0x8064544 40100cbf...

Проблема символьных линков в драйвере Samsung ML-85G (symbolic link)

При создании временного файла используется метка времени...