5 matches found
SUSE CVE-2022-23563
Tensorflow is an Open Source Machine Learning Framework. In multiple places, TensorFlow uses tempfile.mktemp to create temporary files. While this is acceptable in testing, in utilities and libraries it is dangerous as a different process can create the file between the check for the filename in...
The vulnerability arises from the implementation of the `msiexec.exe /fa c:\windows\installer[XXXXX].msi` command, which is used by the Windows Installer installer for the Juniper Identity Management Service. This allows a malicious individual to escalate their privileges.
The vulnerability of the msiexec.exe /fa c:\windows\installer\XXXXX.msi command for installing the Windows Installer’s Juniper Identity Management Service lies in the creation of temporary files with insecure permissions in the %TEMP% directory. Exploiting this vulnerability can allow an attacker...
CVE-2004-0457
The mysqlhotcopy script in mysql 4.0.20 and earlier, when using the scp method from the mysql-server package, allows local users to overwrite arbitrary files via a symlink attack on temporary files...
Mandrake Linux Security Advisory : nedit (MDKSA-2001:042)
A temporary file vulnerability exists in NEdit, the Nirvana Editor. When printing the entire text or selected parts of the text within the editor, nedit creates a temporary file in an insecure manner. This could be exploited to gain access to other user privileges including root. %NASLMINLEVEL...
DSA-343 skk, ddskk - insecure temporary file
Bulletin has no description...