The debstd script in debmake 3.6.x before 3.6.10 and 3.7.x before 3.7.7 allows local users to overwrite arbitrary files via a symlink attack on temporary directories.
References
Link | Resource |
---|---|
http://www.debian.org/security/2004/dsa-615 | Patch Vendor Advisory |
http://www.derkeiler.com/Mailing-Lists/Full-Disclosure/2004-12/0645.html | Broken Link |
http://secunia.com/advisories/13633/ | Permissions Required |
http://www.securityfocus.com/bid/12078 | Patch Third Party Advisory VDB Entry |
https://exchange.xforce.ibmcloud.com/vulnerabilities/18646 | Third Party Advisory VDB Entry |
Configurations
Configuration 1 (hide)
|
Information
Published : 2004-12-30 21:00
Updated : 2019-07-31 08:24
NVD link : CVE-2004-1179
Mitre link : CVE-2004-1179
JSON object : View
CWE
Products Affected
debian
- debmake