Required CVE Record Information
Description
test.sh in Honeyd 1.5c might allow local users to overwrite arbitrary files via a symlink attack on a temporary file.
References 10 Total
- secunia.com: 31658 third-party-advisory
- security.gentoo.org: GLSA-200812-12 vendor-advisory
- openwall.com: [oss-security] 20081030 CVE requests: tempfile issues for aview, mgetty, openoffice, crossfire mailing-list
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=496365
- https://bugs.gentoo.org/show_bug.cgi?id=235770
- http://uvw.ru/report.lenny.txt
- http://dev.gentoo.org/~rbu/security/debiantemp/honeyd-common
- secunia.com: 33141 third-party-advisory
- securityfocus.com: 30874 vdb-entry
- exchange.xforce.ibmcloud.com: honeyd-test-symlink(44735) vdb-entry
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 10 Total
- secunia.com: 31658 third-party-advisoryx_transferred
- security.gentoo.org: GLSA-200812-12 vendor-advisoryx_transferred
- openwall.com: [oss-security] 20081030 CVE requests: tempfile issues for aview, mgetty, openoffice, crossfire mailing-listx_transferred
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=496365 x_transferred
- https://bugs.gentoo.org/show_bug.cgi?id=235770 x_transferred
- http://uvw.ru/report.lenny.txt x_transferred
- http://dev.gentoo.org/~rbu/security/debiantemp/honeyd-common x_transferred
- secunia.com: 33141 third-party-advisoryx_transferred
- securityfocus.com: 30874 vdb-entryx_transferred
- exchange.xforce.ibmcloud.com: honeyd-test-symlink(44735) vdb-entryx_transferred