Required CVE Record Information
Description
mathtex.cgi in mathTeX, when downloaded before 20090713, does not securely create temporary files, which has unspecified impact and local attack vectors.
References 6 Total
- vupen.com: ADV-2009-1875 vdb-entry
- securityfocus.com: 20090713 [oCERT-2009-010] mimeTeX and mathTeX buffer overflows and commandinjection mailing-list
- secunia.com: 35816 third-party-advisory
- http://www.ocert.org/advisories/ocert-2009-010.html
- http://groups.google.com/group/comp.text.tex/browse_thread/thread/5d56d3d744351578
- exchange.xforce.ibmcloud.com: mathtex-mathtex-unspecifed(51797) vdb-entry
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 6 Total
- vupen.com: ADV-2009-1875 vdb-entryx_transferred
- securityfocus.com: 20090713 [oCERT-2009-010] mimeTeX and mathTeX buffer overflows and commandinjection mailing-listx_transferred
- secunia.com: 35816 third-party-advisoryx_transferred
- http://www.ocert.org/advisories/ocert-2009-010.html x_transferred
- http://groups.google.com/group/comp.text.tex/browse_thread/thread/5d56d3d744351578 x_transferred
- exchange.xforce.ibmcloud.com: mathtex-mathtex-unspecifed(51797) vdb-entryx_transferred