Computer Security
[EN] securityvulns.ru no-pyccku


feta symbolic links vulnerability
Published:09.10.2008
Source:
SecurityVulns ID:9340
Type:local
Threat Level:
5/10
Description:Symboliclinks vulnerability on temporayr files creation.
Affected:FETA : feta 1.4
CVE:CVE-2008-4440 (The to-upgrade plugin in feta 1.4.16 allows local users to overwrite arbitrary files via a symlink on the (1) /tmp/feta.install.$USER and (2) /tmp/feta.avail.$USER temporary files.)
Original documentdocumentDEBIAN, [SECURITY] [DSA 1643-1] New feta packages fix denial of service (09.10.2008)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod