|
|
CVE Reference: CVE-2003-1294 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2003-1294 |
|
|
Description: Xscreensaver before 4.15 creates temporary files insecurely in (1) driver/passwd-kerberos.c, (2) driver/xscreensaver-getimage-video, (3) driver/xscreensaver.kss.in, and the (4) vidwhacker and (5) webcollage screensavers, which allows local users to overwrite arbitrary files via a symlink attack. |
|
|
CVE Status: Candidate |
|
|
References: SGI SAID Secunia Advisory: SA20224 Secunia Advisory: SA20226 Secunia Advisory: SA20456 Secunia Advisory: SA20782 REDHAT http://www.redhat.com/support/errata/RHSA-2006-0498.html OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10848 MISC http://jwz.livejournal.com/310943.html CONFIRM http://support.avaya.com/elmodocs2/security/ASA-2006-107.htm http://www.novell.com/linux/download/updates/90_i386.html BID 9125 |
|
| Return to the previous page. |
