Mandrake Security Advisory MDVSA-2009:062 (shadow-utils)

The remote host is missing an update to shadow-utils announced via advisory MDVSA-2009:062. OpenVAS Vulnerability Test $Id: mdksa2009062.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:062 shadow-utils Authors: Thomas Reinke Copyright: Copyright c 20...

Design/Logic Flaw

/bin/login in shadow 4.0.18.1 in Debian GNU/Linux, and probably other Linux distributions, allows local users in the utmp group to overwrite arbitrary files via a symlink attack on a temporary file referenced in a line aka utline field in a utmp entry...

CVE-2008-5394

/bin/login in shadow 4.0.18.1 in Debian GNU/Linux, and probably other Linux distributions, allows local users in the utmp group to overwrite arbitrary files via a symlink attack on a temporary file referenced in a line aka utline field in a utmp entry...