Lukas Ruf wrote:
> Dear Rene
>
> > Rene Engelhard [2008-12-24 14:54]:
> >
> [...]
>
> Thanks for your elaboration.
>
> > Note Steffen didn't say /etc/passwd or so but any file on the system
> > the user has rights on.
> >
>
> See your statement: what can I add :) "the user has rights on" --
>
On Thu, 25 Dec 2008 03:57:05 pm Lukas Ruf wrote:
> Dear Rene
>
> > Rene Engelhard [2008-12-24 14:54]:
>
> [...]
>
> Thanks for your elaboration.
>
> > Note Steffen didn't say /etc/passwd or so but any file on the system
> > the user has rights on.
>
> See your statement: what can I add :) "the us
Dear Rene
> Rene Engelhard [2008-12-24 14:54]:
>
[...]
Thanks for your elaboration.
> Note Steffen didn't say /etc/passwd or so but any file on the system
> the user has rights on.
>
See your statement: what can I add :) "the user has rights on" --
that's exactly not "arbitrary".
Anyway, the
Hi Lukas,
Lukas Ruf wrote:
> > Steffen Joeris [2008-12-22 21:17]:
> >
> > Package: muttprint
> > Severity: normal
> > Tags: security
> >
> > Hi,
> > the following CVE (Common Vulnerabilities & Exposures) id was
> > published for muttprint.
> >
> > CVE-2008-5368[0]:
> > | muttprint in muttprint 0.
Hi Steffen
> Steffen Joeris [2008-12-22 21:17]:
>
> Package: muttprint
> Severity: normal
> Tags: security
>
> Hi,
> the following CVE (Common Vulnerabilities & Exposures) id was
> published for muttprint.
>
> CVE-2008-5368[0]:
> | muttprint in muttprint 0.72d allows local users to overwrite arbi
Package: muttprint
Severity: normal
Tags: security
Hi,
the following CVE (Common Vulnerabilities & Exposures) id was
published for muttprint.
CVE-2008-5368[0]:
| muttprint in muttprint 0.72d allows local users to overwrite arbitrary
| files via a symlink attack on the /tmp/muttprint.log temporary
6 matches
Mail list logo
