3 matches found
CVE-2008-4085
plaiter in Plait before 1.6 allows local users to overwrite arbitrary files via a symlink attack on 1 cut.$$, 2 head.$$, 3 awk.$$, and 4 ps.$$ temporary files in /tmp/...
GLSA-200411-22 : Davfs2, lvm-user: Insecure tempfile handling
The remote host is affected by the vulnerability described in GLSA-200411-22 Davfs2, lvm-user: Insecure tempfile handling Florian Schilhabel from the Gentoo Linux Security Audit Team found that Davfs2 insecurely created .pid files in /tmp. Furthermore, Trustix Secure Linux found that the...
Дырка в MandrakeUpdate
При обновлении временные файлы создаются в директории /tmp что позволяет подменить их непривилигерованному пользователю...