RSS   Vulnerabilities for 'Opencryptoki'   RSS

2012-10-10
 
CVE-2012-4455

 

 
openCryptoki 2.4.1 allows local users to create or set world-writable permissions on arbitrary files via a symlink attack on the (1) LCK..opencryptoki or (2) LCK..opencryptoki_stdll file in /var/lock/.

 
 
CVE-2012-4454

 

 
openCryptoki before 2.4.1, when using spinlocks, allows local users to create or set world-writable permissions on arbitrary files via a symlink attack on the (1) .pkapi_xpk or (2) .pkcs11spinloc file in /tmp.

 


Copyright 2024, cxsecurity.com

 

Back to Top