CVE-2014-3986

Опубликовано: 08 июн. 2014

Источник: debian

Описание

include/tests_webservers in Lynis before 1.5.5 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/lynis.*.unsorted file with an easily determined name.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
lynis	fixed	1.5.5-1		package
lynis	no-dsa		squeeze	package
lynis	no-dsa		wheezy	package

Связанные уязвимости

CVE-2014-3986

ubuntu

больше 11 лет назад

include/tests_webservers in Lynis before 1.5.5 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/lynis.*.unsorted file with an easily determined name.

CVE-2014-3986

nvd

больше 11 лет назад

include/tests_webservers in Lynis before 1.5.5 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/lynis.*.unsorted file with an easily determined name.

GHSA-86cx-5fmh-r6xm

github

больше 3 лет назад

include/tests_webservers in Lynis before 1.5.5 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/lynis.*.unsorted file with an easily determined name.