RSS   Podatności dla 'RTIN'   RSS

2002-01-15
 
CVE-1999-1091

CWE-Other
 

 
UNIX news readers tin and rtin create the /tmp/.tin_log file with insecure permissions and follow symlinks, which allows attackers to modify the permissions of files writable by the user via a symlink attack.

 


Copyright 2024, cxsecurity.com

 

Back to Top