389-admin: multiple /tmp/ file vulnerabilities
| Package(s): | 389-admin | CVE #(s): | CVE-2015-0233 | ||||
| Created: | March 16, 2015 | Updated: | March 18, 2015 | ||||
| Description: | From the Red Hat bugzilla:
Kurt Seifried of Red Hat Product Security reports: There are several temporary file creation vulnerabilities: In the file ./389-admin-1.1.36/admserv/newinst/src/AdminServer.pm.in my $secfile_backup_dir = "/tmp/adm-sec-files." . $$; and in the file: ./389-admin-1.1.36/lib/libadmin/httpcon.c char *dbd = "/tmp/http_trace.%d"; The perl code should use mkstemp() and the C code should use mkstemp(). These issues are only locally exploitable and require administrative action in order to exploit. | ||||||
| Alerts: |
| ||||||