CVE-2009-0115

The Device Mapper multipathing driver aka multipath-tools or device-mapper-multipath 0.4.8, as used in SUSE openSUSE, SUSE Linux Enterprise Server SLES, Fedora, and possibly other operating systems, uses world-writable permissions for the socket file aka /var/run/multipathd.sock, which allows loc...

CVE-2009-0115

The Device Mapper multipathing driver aka multipath-tools or device-mapper-multipath 0.4.8, as used in SUSE openSUSE, SUSE Linux Enterprise Server SLES, Fedora, and possibly other operating systems, uses world-writable permissions for the socket file aka /var/run/multipathd.sock, which allows loc...

Design/Logic Flaw

The Device Mapper multipathing driver aka multipath-tools or device-mapper-multipath 0.4.8, as used in SUSE openSUSE, SUSE Linux Enterprise Server SLES, Fedora, and possibly other operating systems, uses world-writable permissions for the socket file aka /var/run/multipathd.sock, which allows loc...

DEBIAN-CVE-2009-0115

The Device Mapper multipathing driver aka multipath-tools or device-mapper-multipath 0.4.8, as used in SUSE openSUSE, SUSE Linux Enterprise Server SLES, Fedora, and possibly other operating systems, uses world-writable permissions for the socket file aka /var/run/multipathd.sock, which allows loc...

CVE-2009-0115

The Device Mapper multipathing driver aka multipath-tools or device-mapper-multipath 0.4.8, as used in SUSE openSUSE, SUSE Linux Enterprise Server SLES, Fedora, and possibly other operating systems, uses world-writable permissions for the socket file aka /var/run/multipathd.sock, which allows loc...

CVE-2009-0115

The Device Mapper multipathing driver aka multipath-tools or device-mapper-multipath 0.4.8, as used in SUSE openSUSE, SUSE Linux Enterprise Server SLES, Fedora, and possibly other operating systems, uses world-writable permissions for the socket file aka /var/run/multipathd.sock, which allows loc...

PT-2009-1060 · Linux +1 · Kpartx +3

Name of the Vulnerable Software and Affected Versions: device-mapper-multipath versions 0.4.5 through 0.4.8 multipath-tools versions prior to 0.4.8-r1 kpartx version 0.4.7 Description: The issue concerns the Device Mapper multipathing driver, which uses world-writable permissions for the socket...

CentOS Update for sblim-cmpi-base CESA-2008:0497 centos4 x86_64

Check for the Version of sblim-cmpi-base OpenVAS Vulnerability Test CentOS Update for sblim-cmpi-base CESA-2008:0497 centos4 x8664 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it...

Linux/x86 - Connect-Back port UDP/54321 - 151 bytes

No description provided by source. / linux/x86 connect-back port UDP/54321 & dup2 & fork & execve /usr/bin/tcpdump -iany -w- "port ! 54321" 151 bytes by XenoMuta | |/ / / |/ / / / | / / / / /|/ / / / / / / / / / / / / // / / / / // / // // / //|// //// //,//,/ xenomuta arroba phreaker punto...

CVE-2009-0141

XTerm in Apple Mac OS X 10.4.11 and 10.5.6, when used with luit, creates tty devices with insecure world-writable permissions, which allows local users to write to the Xterm of another user...

PT-2009-2834 · Apple +1 · Xterm +2

Name of the Vulnerable Software and Affected Versions: XTerm in Apple Mac OS X versions 10.4.11 through 10.5.6 Description: The issue allows local users to write to the XTerm of another user due to insecure world-writable permissions on tty devices created when XTerm is used with luit...

FreeBSD : perl -- Directory Permissions Race Condition (4a99d61c-f23a-11dd-9f55-0030843d3802)

Secunia reports : Paul Szabo has reported a vulnerability in Perl File::Path::rmtree, which potentially can be exploited by malicious, local users to gain escalated privileges. The vulnerability is caused due to a race condition in the way File::Path::rmtree handles directory permissions when...

openSUSE 10 Security Update : valgrind (valgrind-5809)

valgrind reads a file .valgrindrc in the current directory. Therefore local users could place such a file a world-writable directory such as /tmp and influence other users' valgrind when it's executed there CVE-2008-4865. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text a...

FreeBSD : emacs -- run-python vulnerability (66657bd5-ac92-11dd-b541-001f3b19d541)

Emacs developers report : The Emacs command run-python' launches an interactive Python interpreter. After the Python process starts up, Emacs automatically sends it the line : import emacs which normally imports a script named emacs.py which is distributed with Emacs. This script, which is...

Linux Kernel < 2.6.22 - 'ftruncate()'/'open()' Local Privilege Escalation

/ gw-ftrex.c: Linux kernel bug information: http://osvdb.org/49081 !!!This is for educational purposes only!!! To use it, you've got to find a sgid directory you've got permissions to write into obviously world-writable, e.g: find / -perm -2000 -type d 2/dev/null|xargs ls -ld|grep "rwx" which...

Xen 3.3 - XenStore Domain Configuration Data Unsafe Storage

source: https://www.securityfocus.com/bid/31499/info Xen is prone to a vulnerability that results in configuration information being stored in a location that is writable by guest domains. UPDATE December 19, 2008: The initial proposed patches did not resolve this issue. Xen 3.3 is vulnerable;...

RHEL 3 / 4 / 5 : postfix (RHSA-2008:0839)

Updated postfix packages that fix a security issue are now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Postfix is a Mail Transport Agent MTA, supporting LDAP, SMTP AUTH SASL, and TLS. A fl...

CVE-2008-0884

The Replace function in the capp-lspp-config script in the 1 lspp-eal4-config-ibm and 2 capp-lspp-eal4-config-hp packages before 0.65-2 in Red Hat Enterprise Linux RHEL 5 uses lstat instead of stat to determine the /etc/pam.d/system-auth file permissions, leading to a change to world-writable...

PT-2008-2501 · Ibm +1 · Capp-Lspp-Config +2

Name of the Vulnerable Software and Affected Versions: capp-lspp-eal4-config-hp versions prior to 0.65-2 capp-lspp-config in lspp-eal4-config-ibm versions prior to 0.65-2 Description: The issue arises from the Replace function in the capp-lspp-config script, which uses lstat instead of stat to...

Code injection

Nik Sharpener Pro, possibly 2.0, uses world-writable permissions for plug-in files, which allows local users to gain privileges by replacing a plug-in with a Trojan horse...