RSS   Vulnerabilities for 'Tripwire'   RSS

2004-08-06
 
CVE-2004-0536

 

 
Format string vulnerability in Tripwire commercial 4.0.1 and earlier, including 2.4, and open source 2.3.1 and earlier, allows local users to gain privileges via format string specifiers in a file name, which is used in the generation of an email report.

 
2001-10-18
 
CVE-2001-0774

 

 
Tripwire 1.3.1, 2.2.1 and 2.3.0 allows local users to overwrite arbitrary files and possible gain privileges via a symbolic link attack on temporary files.

 
1999-01-04
 
CVE-1999-0464

 

 
Local users can perform a denial of service in Tripwire 1.2 and earlier using long filenames.

 

 >>> Vendor: Tripwire 3 Products
Tripwire
Tripwire enterprise
Ip360


Copyright 2024, cxsecurity.com

 

Back to Top