Computer Security
[EN] securityvulns.ru no-pyccku


UUDeview symbolic links vulnerability
Published:12.08.2008
Source:
SecurityVulns ID:9212
Type:local
Threat Level:
5/10
Description:Insecure temporary files creation.
CVE:CVE-2008-2266 (uulib/uunconc.c in UUDeview 0.5.20 allows local users to overwrite arbitrary files via a symlink attack on a temporary filename generated by the tempnam function. NOTE: this may be a CVE-2004-2265 regression.)
Original documentdocumentGENTOO, [ GLSA 200808-11 ] UUDeview: Insecure temporary file creation (12.08.2008)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod