SUSE CVE-2004-0970

The 1 gzexe, 2 zdiff, and 3 znew scripts in the gzip package, as used by other packages such as ncompress, allows local users to overwrite files via a symlink attack on temporary files. NOTE: the znew vulnerability may overlap CVE-2003-0367...

SUSE CVE-2005-2991

ncompress 4.2.4 and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files using 1 zdiff or 2 zcmp, a different vulnerability than CVE-2004-0970...

CVE-2005-2991

ncompress 4.2.4 and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files using 1 zdiff or 2 zcmp, a different vulnerability than CVE-2004-0970...

CVE-2005-2991

ncompress 4.2.4 and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files using 1 zdiff or 2 zcmp, a different vulnerability than CVE-2004-0970...

CVE-2005-2991

ncompress 4.2.4 and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files using 1 zdiff or 2 zcmp, a different vulnerability than CVE-2004-0970...

[VulnWatch] ncompress insecure temporary file creation

ncompress insecure temporary file creation Vendor: ftp://ftp.leo.org/pub/comp/os/unix/linux/sunsite/utils/compress/ Advisory: http://www.zataz.net/adviso/ncompress-09052005.txt Vendor informed: yes Exploit available: yes Impact : low Exploitation : low The vulnerability is caused due to temporary...

DEBIAN-CVE-2004-0970

The 1 gzexe, 2 zdiff, and 3 znew scripts in the gzip package, as used by other packages such as ncompress, allows local users to overwrite files via a symlink attack on temporary files. NOTE: the znew vulnerability may overlap CVE-2003-0367...

CVE-2004-0970

CVE-2004-0970 concerns the gzip package: the (1) gzexe, (2) zdiff, and (3) znew scripts are able to overwrite files via a symlink attack on temporary files, enabling local users to modify files. This vulnerability is described as a local-privilege-impact issue (I:P) with a low base score (2.1) an...