ID SECURITYVULNS:VULN:3831
Type securityvulns
Reporter BUGTRAQ
Modified 2004-07-09T00:00:00
Description
Temporary files and directories are created in unsafe manner.
{"id": "SECURITYVULNS:VULN:3831", "bulletinFamily": "software", "title": "Shorewall symbolic links problem", "description": "Temporary files and directories are created in unsafe manner.", "published": "2004-07-09T00:00:00", "modified": "2004-07-09T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:3831", "reporter": "BUGTRAQ", "references": ["https://vulners.com/securityvulns/securityvulns:doc:6467"], "cvelist": [], "type": "securityvulns", "lastseen": "2018-08-31T11:09:18", "edition": 1, "viewCount": 1, "enchantments": {"score": {"value": 6.0, "vector": "NONE", "modified": "2018-08-31T11:09:18", "rev": 2}, "dependencies": {"references": [{"type": "apple", "idList": ["APPLE:HT210918"]}, {"type": "cve", "idList": ["CVE-2018-18492", "CVE-2018-12405", "CVE-2018-18498", "CVE-2018-18494", "CVE-2018-18493", "CVE-2020-3831", "CVE-2019-3831"]}, {"type": "attackerkb", "idList": ["AKB:7386CFE2-88AF-4E79-9D39-ED7781C607C8"]}, {"type": "nessus", "idList": ["ORACLELINUX_ELSA-2018-3831.NASL", "REDHAT-RHSA-2018-3831.NASL", "PHOTONOS_PHSA-2019-1_0-0205_ELASTICSEARCH.NASL", "REDHAT-RHSA-2019-0458.NASL", "CENTOS_RHSA-2018-3831.NASL", "REDHAT-RHSA-2019-0457.NASL"]}, {"type": "redhat", "idList": ["RHSA-2019:0458", "RHSA-2019:0457"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310882990"]}, {"type": "centos", "idList": ["CESA-2018:3831"]}, {"type": "oraclelinux", "idList": ["ELSA-2018-3831"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:6467"]}], "modified": "2018-08-31T11:09:18", "rev": 2}, "vulnersScore": 6.0}, "affectedSoftware": [{"name": "Shorewall", "operator": "eq", "version": "1.4"}]}
{"rst": [{"lastseen": "2021-03-02T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **106[.]12.77.212** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **2**.\n First seen: 2019-10-13T03:00:00, Last seen: 2021-03-02T03:00:00.\n IOC tags: **shellprobe, generic**.\nASN 38365: (First IP 106.12.0.0, Last IP 106.12.241.255).\nASN Name \"CNNICBAIDUAP\" and Organisation \"Beijing Baidu Netcom Science and Technology Co Ltd\".\nASN hosts 173817 domains.\nGEO IP information: City \"Jinhua\", Country \"China\".\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2019-10-13T00:00:00", "id": "RST:5A0A4E7A-6BD2-3831-AE04-A75FFB509129", "href": "", "published": "2021-03-03T00:00:00", "title": "RST Threat feed. IOC: 106.12.77.212", "type": "rst", "cvss": {}}, {"lastseen": "2021-03-02T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **1[.]36.215.186** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **20**.\n First seen: 2021-01-09T03:00:00, Last seen: 2021-03-02T03:00:00.\n IOC tags: **generic**.\nASN 4760: (First IP 1.36.0.0, Last IP 1.36.255.255).\nASN Name \"HKTIMSAP\" and Organisation \"HKT Limited\".\nASN hosts 11671 domains.\nGEO IP information: City \"Central\", Country \"Hong Kong\".\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2021-01-09T00:00:00", "id": "RST:CB74AD01-9014-3831-9906-4D984D57ED7E", "href": "", "published": "2021-03-03T00:00:00", "title": "RST Threat feed. IOC: 1.36.215.186", "type": "rst", "cvss": {}}, {"lastseen": "2021-03-02T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **27[.]6.129.205** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **13**.\n First seen: 2020-12-26T03:00:00, Last seen: 2021-03-02T03:00:00.\n IOC tags: **generic**.\nASN 17488: (First IP 27.6.68.0, Last IP 27.7.33.255).\nASN Name \"HATHWAYNETAP\" and Organisation \"Hathway IP Over Cable Internet\".\nASN hosts 940 domains.\nGEO IP information: City \"Hyderabad\", Country \"India\".\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2020-12-26T00:00:00", "id": "RST:86E6C243-1E1D-3831-AE7A-D3D05F943B27", "href": "", "published": "2021-03-03T00:00:00", "title": "RST Threat feed. IOC: 27.6.129.205", "type": "rst", "cvss": {}}, {"lastseen": "2021-03-02T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **45[.]6.29.44** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **13**.\n First seen: 2020-12-25T03:00:00, Last seen: 2021-03-02T03:00:00.\n IOC tags: **generic**.\nASN 266121: (First IP 45.6.28.0, Last IP 45.6.31.255).\nASN Name \"ASDOS\" and Organisation \"SANTOS TECNOLOGIA DA INFORMACAO\".\nASN hosts 0 domains.\nGEO IP information: City \"So Paulo\", Country \"Brazil\".\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2020-12-25T00:00:00", "id": "RST:1A8C1C04-B50D-3831-8A8C-6FC27464EF4C", "href": "", "published": "2021-03-03T00:00:00", "title": "RST Threat feed. IOC: 45.6.29.44", "type": "rst", "cvss": {}}, {"lastseen": "2021-03-02T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **67[.]23.100.84** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **50**.\n First seen: 2021-02-27T03:00:00, Last seen: 2021-03-02T03:00:00.\n IOC tags: **scan, generic**.\nASN 33597: (First IP 67.23.100.0, Last IP 67.23.100.255).\nASN Name \"INFORELAY\" and Organisation \"InfoRelay Online Systems Inc\".\nASN hosts 3831 domains.\nGEO IP information: City \"\", Country \"United States\".\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2021-02-27T00:00:00", "id": "RST:CD83FA67-784D-3E87-AE87-F3AA030FFC07", "href": "", "published": "2021-03-03T00:00:00", "title": "RST Threat feed. IOC: 67.23.100.84", "type": "rst", "cvss": {}}, {"lastseen": "2021-03-02T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **46[.]46.42.77** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **22**.\n First seen: 2020-12-30T03:00:00, Last seen: 2021-03-02T03:00:00.\n IOC tags: **generic**.\nASN 15638: (First IP 46.46.24.0, Last IP 46.46.63.255).\nASN Name \"UTL\" and Organisation \"Ussuriysk\".\nASN hosts 32 domains.\nGEO IP information: City \"Artm\", Country \"Russia\".\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2020-12-30T00:00:00", "id": "RST:807B5D5E-4771-3831-905F-ACDF0754898A", "href": "", "published": "2021-03-03T00:00:00", "title": "RST Threat feed. IOC: 46.46.42.77", "type": "rst", "cvss": {}}, {"lastseen": "2021-03-02T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **70[.]33.177.251** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **12**.\n First seen: 2020-12-22T03:00:00, Last seen: 2021-03-02T03:00:00.\n IOC tags: **generic**.\nASN 33597: (First IP 70.33.175.0, Last IP 70.33.182.255).\nASN Name \"INFORELAY\" and Organisation \"InfoRelay Online Systems Inc\".\nASN hosts 3831 domains.\nGEO IP information: City \"\", Country \"United States\".\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2020-12-22T00:00:00", "id": "RST:88D4129D-00BE-3617-9508-9AB9359B0B49", "href": "", "published": "2021-03-03T00:00:00", "title": "RST Threat feed. IOC: 70.33.177.251", "type": "rst", "cvss": {}}, {"lastseen": "2021-03-02T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **70[.]35.205.100** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **10**.\n First seen: 2021-02-19T03:00:00, Last seen: 2021-03-02T03:00:00.\n IOC tags: **malware**.\nASN 8560: (First IP 70.35.192.0, Last IP 70.35.207.255).\nASN Name \"ONEANDONEAS\" and Organisation \"Brauerstrasse 48\".\nASN hosts 11381073 domains.\nGEO IP information: City \"\", Country \"United States\".\nIOC could be a **False Positive** (Cloud provider IP).\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2021-02-19T00:00:00", "id": "RST:A9DCDDD8-3831-3B3D-8D86-740FEFE04986", "href": "", "published": "2021-03-03T00:00:00", "title": "RST Threat feed. IOC: 70.35.205.100", "type": "rst", "cvss": {}}, {"lastseen": "2021-03-02T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **73[.]15.44.227** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **14**.\n First seen: 2020-11-04T03:00:00, Last seen: 2021-03-02T03:00:00.\n IOC tags: **shellprobe, generic**.\nASN 7922: (First IP 73.5.0.0, Last IP 73.15.255.255).\nASN Name \"COMCAST7922\" and Organisation \"Comcast Cable Communications LLC\".\nASN hosts 158095 domains.\nGEO IP information: City \"Union City\", Country \"United States\".\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2020-11-04T00:00:00", "id": "RST:E31E3212-FB49-3831-AC26-5A6EA48453B1", "href": "", "published": "2021-03-03T00:00:00", "title": "RST Threat feed. IOC: 73.15.44.227", "type": "rst", "cvss": {}}, {"lastseen": "2021-03-02T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **73[.]200.123.136** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **12**.\n First seen: 2020-12-22T03:00:00, Last seen: 2021-03-02T03:00:00.\n IOC tags: **generic**.\nASN 7922: (First IP 73.187.0.0, Last IP 73.217.255.255).\nASN Name \"COMCAST7922\" and Organisation \"Comcast Cable Communications LLC\".\nASN hosts 158095 domains.\nGEO IP information: City \"Washington\", Country \"United States\".\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2020-12-22T00:00:00", "id": "RST:0D520A05-3652-3831-B01F-1DEF07CAEA8D", "href": "", "published": "2021-03-03T00:00:00", "title": "RST Threat feed. IOC: 73.200.123.136", "type": "rst", "cvss": {}}]}
