Computer Security
[EN] securityvulns.ru no-pyccku


Linux Security Auditing Tool symbolic links problem
Published:19.03.2007
Source:
SecurityVulns ID:7433
Type:local
Threat Level:
5/10
Description:Symbolic links problem on temporary file creation.
Affected:LSAT : lsat 0.9
CVE:CVE-2007-1500 (The Linux Security Auditing Tool (LSAT) allows local users to overwrite arbitrary files via a symlink attack on temporary files, as demonstrated using /tmp/lsat1.lsat.)
Original documentdocumentGENTOO, [ GLSA 200703-20 ] LSAT: Insecure temporary file creation (19.03.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod