|
|
CVE Reference: CVE-2007-3024 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2007-3024 |
|
|
Description: libclamav/others.c in ClamAV before 0.90.3 and 0.91 before 0.91rc1 uses insecure permissions for temporary files that are created by the cli_gentempstream function in clamd/clamdscan, which might allow local users to read sensitive files. |
|
|
CVE Status: Candidate |
|
|
References: SUSE http://www.novell.com/linux/security/advisories/2007_33_clamav.html SAID Secunia Advisory: SA25523 Secunia Advisory: SA25525 Secunia Advisory: SA25688 Secunia Advisory: SA25796 MLIST http://lurker.clamav.net/message/20070530.224918.5c64abc4.en.html GENTOO http://security.gentoo.org/glsa/glsa-200706-05.xml DEBIAN http://www.debian.org/security/2007/dsa-1320 CONFIRM http://kolab.org/security/kolab-vendor-notice-15.txt http://svn.clamav.net/svn/clamav-devel/trunk/ChangeLog BID 24358 |
|
| Return to the previous page. |
