88 matches found
Tripwire vulnerable to arbitrary file overwriting via symlink redirection of temporary file
Overview Tripwire is a file integrity verification utility for Unix and Linux operating systems. In some implementations, tripwire opens insecure temporary files with predictable names in publically-writable directories. Using a symbolic link attack, a local intruder may overwrite or create...
CVE-2001-0774
Tripwire 1.3.1, 2.2.1 and 2.3.0 allows local users to overwrite arbitrary files and possible gain privileges via a symbolic link attack on temporary files...
Tripwire for Webpages Installation Disclosure
The remote host is running Tripwire for Webpages, a commercial product to monitor for changes in web pages. This information may prove useful to anyone doing reconnaissance before launching an actual attack. %NASLMINLEVEL 70300 C Tenable Network Security include'deprecatednasllevel.inc';...
Символьные линки в Tripwire (symbolic link)
Проблема символьнгых линков при создании временных файлов...
Tripwire temporary files
------------------------------------------------------------ Insecure temporary files in Tripwire [email protected] $Date: 2001/07/09 05:02:02 $ ------------------------------------------------------------ Author: Jarno Huuskonen [email protected] Discovered: Tue 16 Jan 2001 Vendor...
CVE-1999-0464
Local users can perform a denial of service in Tripwire 1.2 and earlier using long filenames...
CVE-1999-0464
CVE-1999-0464 affects Tripwire 1.2 and earlier. Local users can trigger a denial of service by using long filenames, per the provided descriptions. Red Hat and CVE records corroborate the same issue. No remediation details are present in the connected documents. This is a historic local DoS vulne...
CVE-1999-0464
Local users can perform a denial of service in Tripwire 1.2 and earlier using long filenames...