CVE Reference: CVE-2011-4363

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2011-4363

Description:
ProcessTable.pm in the Proc::ProcessTable module 0.45 for Perl, when TTY information caching is enabled, allows local users to overwrite arbitrary files via a symlink attack on /tmp/TTYDEVS.

CVE Status:
Candidate

References:

SAID
  Secunia Advisory: SA47015

OSVDB
  77428

MLIST
  http://www.openwall.com/lists/oss-security/2011/11/30/2
  http://www.openwall.com/lists/oss-security/2011/11/30/3

MISC
  http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=650500

CONFIRM

BID
  50868


Return to the previous page.