EUVD-2007-3900

Malware in sbrugna...

GLSA-200710-10 : SKK Tools: Insecure temporary file creation

The remote host is affected by the vulnerability described in GLSA-200710-10 SKK Tools: Insecure temporary file creation skkdic-expr.c insecurely writes temporary files to a location in the form $TMPDIR/skkdic$PID.pag,dir,db, where $PID is the process ID. Impact : A local attacker could create...

SKK Tools: Insecure temporary file creation

Background SKK is a Japanese input method for Emacs. Description skkdic-expr.c insecurely writes temporary files to a location in the form $TMPDIR/skkdic$PID.pag,dir,db, where $PID is the process ID. Impact A local attacker could create symbolic links in the directory where the temporary files ar...

Design/Logic Flaw

The main function in skkdic-expr.c in SKK Tools 1.2 allows local users to overwrite or delete arbitrary files via a symlink attack on a skkdic$PID temporary file...

CVE-2007-3916

The main function in skkdic-expr.c in SKK Tools 1.2 allows local users to overwrite or delete arbitrary files via a symlink attack on a skkdic$PID temporary file...

CVE-2007-3916

The main function in skkdic-expr.c in SKK Tools 1.2 allows local users to overwrite or delete arbitrary files via a symlink attack on a skkdic$PID temporary file...

CVE-2007-3916

The main function in skkdic-expr.c in SKK Tools 1.2 allows local users to overwrite or delete arbitrary files via a symlink attack on a skkdic$PID temporary file...

CVE-2007-3916

CVE-2007-3916 affects SKK Tools 1.2 (skkdic-expr.c): it insecurely writes temporary files to $TMPDIR/skkdic$PID.{pag,dir,db}, enabling a local attacker to create symbolic links and potentially overwrite or modify arbitrary files. The issue is caused by writing to a temporary file named with the p...

CVE-2007-3916

The main function in skkdic-expr.c in SKK Tools 1.2 allows local users to overwrite or delete arbitrary files via a symlink attack on a skkdic$PID temporary file...