Bugtraq mailing list archives
flex license manager tempfile predictable name...
From: sp00n () APOLLO GTI NET (sp00n)
Date: Mon, 21 Feb 2000 23:44:51 -0500
During the install of workshop pro 5.0 the flex license manager creates a file in /var/tmp/license_errors, since /var/tmp is writable by anyone and the tmp filename is predictable... you can see the problems here to install licenses you need to be root. so, it could be nasty if this file was a link... -rw-r--r-- 1 root other 394 Feb 4 13:48 /var/tmp/license_errors the date and time installed workshop pro in the file, logs from the install: Cannot access location /usr/local/bin/SUNWspro/license_dir to store product li censes grep: can't open /opt/SUNWspro/license_dir/sunpro.lic,node Cannot access location /usr/local/bin/SUNWspro/license_dir to store product li censes **All Licenses Were Successfully Installed** WS Compiler C++/SPARC 5.0 XX-XXX-XXXX XXXXXXXXXXXXXXX <-cut->
Current thread:
- snmp problems still alive... Michal Zalewski (Feb 14)
- NetBSD Security Advisory 2000-001 Daniel Carosone (Feb 15)
- Re: snmp problems still alive... Gus Huber (Feb 15)
- cisco/ascend snmp config tool or exploit? -- Re: snmp problems still alive monti (Feb 17)
- Sun Internet Mail Server Michal Krzysztofowicz (Feb 19)
- flex license manager tempfile predictable name... sp00n (Feb 21)
- Re: flex license manager tempfile predictable name... Roelof JT Jonkman (Feb 22)
- Re: flex license manager tempfile predictable name... David Evans (Feb 23)
- cisco/ascend snmp config tool or exploit? -- Re: snmp problems still alive monti (Feb 17)
- FreeBSD Security Advisory: FreeBSD-SA-00:03.asmon Kris Kennaway (Feb 19)
- Re: cisco/ascend snmp config tool or exploit? -- Re: snmp problems still alive Michal Zalewski (Feb 20)
- Patch Available for "VM File Reading" Vulnerability Microsoft Product Security (Feb 19)
- Re: cisco/ascend snmp config tool or exploit? -- Re: snmp problems still alive Michal Zalewski (Feb 20)
- unused bit attack alert LigerTeam (Feb 21)
- A.L.E.R.T.: BigMailBox.com href tokens leave mailboxes open to control by a malicious site. Cancer Omega (Feb 21)
- Re: unused bit attack alert Jochen Bauer (Feb 22)
- Re: unused bit attack alert Carlos García Argos (Feb 22)