CVE-2005-3111

The handler code for backupninja 0.8 and earlier creates temporary files with predictable filenames, which allows local users to modify arbitrary files via a symlink attack...

CVE-2005-3111

The handler code for backupninja 0.8 and earlier creates temporary files with predictable filenames, which allows local users to modify arbitrary files via a symlink attack...

DEBIAN-CVE-2005-3111

The handler code for backupninja 0.8 and earlier creates temporary files with predictable filenames, which allows local users to modify arbitrary files via a symlink attack...

CVE-2005-3111

The handler code for backupninja 0.8 and earlier creates temporary files with predictable filenames, which allows local users to modify arbitrary files via a symlink attack...

[SECURITY] [DSA 827-1] New backupninja packages fix insecure temporary file

-------------------------------------------------------------------------- Debian Security Advisory DSA 827-1 [email protected] http://www.debian.org/security/ Michael Stone September 29th, 2005 http://www.debian.org/security/faq -...

CVE-2005-3049

PhpMyFaq 1.5.1 stores data files under the web document root with insufficient access control and predictable filenames, which allows remote attackers to obtain sensitive information via a direct request to the data/trackingDATE file...

Debian DSA-814-1 : lm-sensors - insecure temporary file

Javier Fernandez-Sanguino Pena discovered that a script of lm-sensors, utilities to read temperature/voltage/fan sensors, creates a temporary file with a predictable filename, leaving it vulnerable for a symlink attack. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...

CVE-2005-2956

ATutor 1.5.1, and possibly earlier versions, stores temporary chat logs under the web document root with insufficient access control and predictable filenames, which allows remote attackers to obtain user chat conversations via direct requests to those files...

CVE-2005-2956

ATutor 1.5.1, and possibly earlier versions, stores temporary chat logs under the web document root with insufficient access control and predictable filenames, which allows remote attackers to obtain user chat conversations via direct requests to those files...

iDEFENSE Security Advisory 08.29.05: Adobe Version Cue VCNative Arbitrary File Overwrite Vulnerability

Adobe Version Cue VCNative Arbitrary File Overwrite Vulnerability iDEFENSE Security Advisory 08.29.05 www.idefense.com/application/poi/display?id=297&type=vulnerabilities August 29, 2005 I. BACKGROUND Adobe Version Cue is a software version tracking system for Adobe products distributed with Adob...

Adobe Version Cue 1.0/1.0.1 (OSX) - Local Privilege Escalation

!/usr/bin/perl Adobe Version Cue VCNativeOSX: local root exploit. by: vade79/v9 [email protected] fakehalo/realhalo Adobe Version Cue's VCNative program writes data to a log file in the current working directory while running as setuid root. the logfile is formated as /VCNative-.log, which is easily...

CVE-2005-2101

CVE-2005-2101 affects KDE kdeedu: specifically the langen2kvtml script in the kvoctrain component creates insecure temporary files in /tmp with predictable names, allowing a local attacker to overwrite arbitrary files. Multiple vendors/advisories (Debian DSA-818-1, Mandrake/MKSA-2005:159, SUSE, O...

CVE-2005-2101

langen2kvtml in KDE 3.0 to 3.4.2 creates insecure temporary files in /tmp with predictable names, which allows local users to overwrite arbitrary files...

CVE-2004-2373

Technical details beyond the public description are not provided in the supplied documents; monitor for updates for potential details on affected products, versions, root cause, and remediation.

CVE-2004-2373

The Buddy icon file for AOL Instant Messenger AIM 4.3 through 5.5 is created in a predictable location, which may allow remote attackers to use a shell: URI to exploit other vulnerabilities that involve predictable locations...

Heartbeat: Insecure temporary file creation

Background Heartbeat is a component of the High-Availability Linux project. It it used to perform death-of-node detection, communications and cluster management. Description Eric Romang has discovered that Heartbeat insecurely creates temporary files with predictable filenames. Impact A local...

GLSA-200508-05 : Heartbeat: Insecure temporary file creation

The remote host is affected by the vulnerability described in GLSA-200508-05 Heartbeat: Insecure temporary file creation Eric Romang has discovered that Heartbeat insecurely creates temporary files with predictable filenames. Impact : A local attacker could create symbolic links in the temporary...

CVE-2002-2001

jmcce 1.3.8 in Mandrake 8.1 creates log files in /tmp with predictable names, which allows local users to overwrite arbitrary files via a symlink attack...

FreeBSD : mod_dosevasive -- insecure temporary file creation (88ff90f2-6e43-11d9-8c87-000a95bc6fae)

An LSS Security Advisory reports : When a denial of service attack is detected, moddosevasive will, among other things, create a temporary file which it will use to trace actions from the offensive IP address. This file is insecurely created in /tmp and it's name is easily predictable. It is then...

FreeBSD : portupgrade -- insecure temporary file handling vulnerability (22f00553-a09d-11d9-a788-0001020eed82)

Simon L. Nielsen discovered that portupgrade handles temporary files in an insecure manner. This could allow an unprivileged local attacker to execute arbitrary commands or overwrite arbitrary files with the permissions of the user running portupgrade, typically root, by way of a symlink attack...