Computer Security
[EN] no-pyccku

Feynmf symbolic links vulnerability
SecurityVulns ID:8367
Threat Level:
5/10 symbolic linkcs vulnerability on temporary files creation.
Affected:FEYNMF : feynmf 1.08
CVE:CVE-2007-5940 ( in feynmf 1.08, as used in TeXLive 2007, allows local users to overwrite arbitrary files and execute arbitrary code via a symlink attack on the feynmf$$.pl temporary file.)
Original documentdocumentGENTOO, [ GLSA 200711-32 ] Feynmf: Insecure temporary file creation (21.11.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod