User: Password:
|
|
Subscribe / Log in / New account

lynis: privilege escalation

Package(s):lynis CVE #(s):CVE-2014-3982 CVE-2014-3986
Created:June 18, 2014 Updated:June 18, 2014
Description: From the CVE entries:

include/tests_webservers in Lynis before 1.5.5 on AIX allows local users to overwrite arbitrary files via a symlink attack on a /tmp/lynis.##### file. (CVE-2014-3982)

include/tests_webservers in Lynis before 1.5.5 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/lynis.*.unsorted file with an easily determined name. (CVE-2014-3986)

Alerts:
Fedora FEDORA-2014-7400 lynis 2014-06-17

(Log in to post comments)


Copyright © 2018, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds