Computer Security
[EN] securityvulns.ru no-pyccku


Feynmf symbolic links vulnerability
Published:21.11.2007
Source:
SecurityVulns ID:8367
Type:remote
Threat Level:
5/10
Description:feynmf.pl symbolic linkcs vulnerability on temporary files creation.
Affected:FEYNMF : feynmf 1.08
CVE:CVE-2007-5940 (feynmf.pl in feynmf 1.08, as used in TeXLive 2007, allows local users to overwrite arbitrary files and execute arbitrary code via a symlink attack on the feynmf$$.pl temporary file.)
Original documentdocumentGENTOO, [ GLSA 200711-32 ] Feynmf: Insecure temporary file creation (21.11.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod