First published: Fri Sep 24 2004(Updated: )
The maketemp.pl script in Usermin 1.070 and 1.080 allows local users to overwrite arbitrary files at install time via a symlink attack on the /tmp/.usermin directory.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Usermin Usermin | =1.070 | |
Webmin Webmin | =1.0.20 | |
Usermin Usermin | =1.040 | |
Usermin Usermin | =1.060 | |
Webmin Webmin | =1.1.50 | |
Webmin Webmin | =1.0.60 | |
Usermin Usermin | =1.080 | |
Webmin Webmin | =1.1.00 | |
Webmin Webmin | =1.1.30 | |
Webmin Webmin | =1.1.21 | |
Webmin Webmin | =1.0.00 | |
Webmin Webmin | =1.0.90 | |
Usermin Usermin | =1.010 | |
Webmin Webmin | =1.1.40 | |
Usermin Usermin | =1.020 | |
Usermin Usermin | =1.051 | |
Usermin Usermin | =1.000 | |
Usermin Usermin | =1.030 | |
Webmin Webmin | =1.0.70 | |
Webmin Webmin | =1.0.50 | |
Webmin Webmin | =1.0.80 | |
Webmin Webmin | =1.1.10 | |
Mandrakesoft Mandrake Linux Corporate Server | =2.1 | |
Mandrakesoft Mandrake Linux | =9.2 | |
Mandrakesoft Mandrake Linux | =9.2 | |
Mandrakesoft Mandrake Linux | =10.0 | |
Mandrakesoft Mandrake Linux Corporate Server | =2.1 | |
Mandrakesoft Mandrake Linux | =10.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.