[oss-security] wafp insecure temporary directory

From: Henri Salo <henri_at_nospam>
Date: Tue Apr 27 2010 - 15:41:22 GMT
To: cert@cert.org, "Steven M. Christey" <coley@linus.mitre.org>

Wafp creates a temporary directory to predictable path and name. This
allows a local attacker to create a denial of service condition and
discloses sensitive information to unprivileged users. This also reduces
usability of this software, because one can't run more than one wafp-
instances at the same time. This issue can also be leveraged to delete
arbitrary files or directories via a symlink attack.

I notified the project:
http://code.google.com/p/webapplicationfingerprinter/issues/detail?id=8

Can I get CVE-identifier for this issue?

--- Henri Salo

This message: [ Message body ]
Next message: Dan Poltawski: "[oss-security] CVS request - Moodle"
Previous message: Steve Langasek: "Re: [oss-security] Re: CVE request: irssi 0.8.15"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ]