3 matches found
Ubuntu 5.10 : tuxpaint vulnerability (USN-243-1)
Javier Fernandez-Sanguino Pena discovered that the tuxpaint-import.sh script created a temporary file in an insecure way. This could allow a symlink attack to create or overwrite arbitrary files with the privileges of the user running tuxpaint. Note that Tenable Network Security has extracted the...
CVE-2005-3340
The tuxpaint-import.sh script in Tux Paint tuxpaint 0.9.14 and earlier creates temporary files insecurely, with unknown impact and attack vectors...
DEBIAN-CVE-2005-3340
The tuxpaint-import.sh script in Tux Paint tuxpaint 0.9.14 and earlier creates temporary files insecurely, with unknown impact and attack vectors...