poliycd-weight Server Detection

Detection of a policyd-weight server. Copyright C 2015 SCHUTZWERK GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or...

Vulnerabilities in the Debian GNU/Linux operating system that allow a local malicious individual to compromise the confidentiality, integrity, and accessibility of protected information

The multiple vulnerabilities in the policyd-weight package of the Debian GNU/Linux operating system can be exploited, leading to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited by local malicious individuals...

Gentoo Security Advisory GLSA 200804-11 (policyd-weight)

The remote host is missing updates announced in advisory GLSA 200804-11. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Gentoo Security Advisory GLSA 200804-11 (policyd-weight)

The remote host is missing updates announced in advisory GLSA 200804-11. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

FreeBSD Ports: postfix-policyd-weight

The remote host is missing an update to the system as announced in the referenced advisory. VID 072a53e0-0397-11dd-bd06-0017319806e7 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

FreeBSD Ports: postfix-policyd-weight

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

GLSA-200804-11 : policyd-weight: Insecure temporary file creation

The remote host is affected by the vulnerability described in GLSA-200804-11 policyd-weight: Insecure temporary file creation Chris Howells reported that policyd-weight creates and uses the '/tmp/.policyd-weight/' directory in an insecure manner. Impact : A local attacker could exploit this...

FreeBSD : postfix-policyd-weight -- working directory symlink vulnerability (072a53e0-0397-11dd-bd06-0017319806e7)

postfix-policyd-weight does not check for symlink for its working directory. If the working directory is not already setup by the super root, an unprivileged user can link it to another directories in the system. This results in ownership/permission changes on the target directory. %NASLMINLEVEL...

Debian: Security Advisory (DSA-1531-2)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian Security Advisory DSA 1531-1 (policyd-weight)

The remote host is missing an update to policyd-weight announced via advisory DSA 1531-1. This VT has been deprecated and merged into the VT SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...

Debian Security Advisory DSA 1531-2 (policyd-weight)

The remote host is missing an update to policyd-weight announced via advisory DSA 1531-2. OpenVAS Vulnerability Test $Id: deb15312.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1531-2 policyd-weight Authors: Thomas Reinke Copyright: Copyright c 2008 E-Sof...

Debian Security Advisory DSA 1531-1 (policyd-weight)

The remote host is missing an update to policyd-weight announced via advisory DSA 1531-1. OpenVAS Vulnerability Test $Id: deb15311.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1531-1 policyd-weight Authors: Thomas Reinke Copyright: Copyright c 2008 E-Sof...

CVE-2008-1569

policyd-weight 0.1.14 beta-16 and earlier allows local users to modify or delete arbitrary files via a symlink attack on temporary files that are used when creating a socket...

Code injection

policyd-weight 0.1.14 beta-16 and earlier allows local users to modify or delete arbitrary files via a symlink attack on temporary files that are used when creating a socket...

Race condition

Race condition in the createlockpath function in policyd-weight 0.1.14 beta-16 allows local users to modify or delete arbitrary files by creating the LOCKPATH directory, then modifying it after the symbolic link check occurs. NOTE: this is due to an incomplete fix for CVE-2008-1569...

CVE-2008-1570

Race condition in the createlockpath function in policyd-weight 0.1.14 beta-16 allows local users to modify or delete arbitrary files by creating the LOCKPATH directory, then modifying it after the symbolic link check occurs. NOTE: this is due to an incomplete fix for CVE-2008-1569...

CVE-2008-1569

policyd-weight 0.1.14 beta-16 and earlier allows local users to modify or delete arbitrary files via a symlink attack on temporary files that are used when creating a socket...

DEBIAN-CVE-2008-1569

policyd-weight 0.1.14 beta-16 and earlier allows local users to modify or delete arbitrary files via a symlink attack on temporary files that are used when creating a socket...

DEBIAN-CVE-2008-1570

Race condition in the createlockpath function in policyd-weight 0.1.14 beta-16 allows local users to modify or delete arbitrary files by creating the LOCKPATH directory, then modifying it after the symbolic link check occurs. NOTE: this is due to an incomplete fix for CVE-2008-1569...

CVE-2008-1570

Race condition in the createlockpath function in policyd-weight 0.1.14 beta-16 allows local users to modify or delete arbitrary files by creating the LOCKPATH directory, then modifying it after the symbolic link check occurs. NOTE: this is due to an incomplete fix for CVE-2008-1569...