Showing 1 - 5 of 5

Files from Imran Ghory

unzip552.txt: Posted Aug 5, 2005; Authored by Imran Ghory; If a malicious local user extracts a file using unzip 5.52 in a directory that they have write access to, a TOCTOU bug can be exploited to change the permission of any file belonging to that user.; tags | advisory, local; SHA-256 | 55b2c4f64e7c54f23df8ac2775729729ccfb5e0dccfe171b11c2faff2adf5173; Download | Favorite | View

rpdump_race_condition.txt: Posted Apr 18, 2005; Authored by Imran Ghory; Pine mail's rpdump is vulnerable to a race condition allowing local users to overwrite files which are writable by anyone using Pine.; tags | advisory, local; SHA-256 | de5bb033829419007c7d3461177a2e00c37c9a5805fb998a8137ae3ed4e1617b; Download | Favorite | View

gnu521race.txt: Posted Apr 17, 2005; Authored by Imran Ghory; mkdir, mknod, mkfifo included in GNU Core Utilities 5.2.1 suffer from race conditions.; tags | advisory; SHA-256 | 5d46c6e44436a1f3a69fe74eafdae7b644badbdee503c3f69bf1cabbc47c5aea; Download | Favorite | View

gzipPerm.txt: Posted Apr 17, 2005; Authored by Imran Ghory; If a malicious local user has write access to a directory in which a target user is using gzip to extract or compress a file to then a TOCTOU bug can be exploited to change the permission of any file belonging to that user. Versions 1.2.4 and 1.3.3 of gzip are affected.; tags | advisory, local; SHA-256 | 5854e58147b30441763747f7c80602edbb8467d416034d870faf6f5a84ee25a5; Download | Favorite | View

bzip2102.txt: Posted Apr 14, 2005; Authored by Imran Ghory; If a malicious local user has write access to a directory in which a target user is using bzip2 to extract or compress a file to then a TOCTOU bug can be exploited to change the permission of any file belonging to that user. Versions 1.0.2 and below are affected.; tags | advisory, local; SHA-256 | e96d285c58912244431cfbe1842d9191f1d0f9e8a20c752c7b40d01dd92a639e; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days