Bugtraq mailing list archives
klprfax_filter symlink vulnerability
From: wang yuan <r0gue () 21cn com>
Date: 14 Dec 2001 06:14:54 -0000
hi,all ! i'm sorry if this bug has been reported. klprfax_filter (kdeutils-2.2-2),is an application to make a printer that acts as a fax. when using klprfax_filter,it would creat a temp file,/tmp/klprfax.filter,but the temporary file was not created safely,this vulnerability could be exploited to overwrite arbitrary files! just tested on redhat 7.1. Cheers r0gue
Current thread:
- klprfax_filter symlink vulnerability wang yuan (Dec 14)
- Re: klprfax_filter symlink vulnerability George Staikos (Dec 14)