2 results (0.002 seconds)

CVSS: 4.4EPSS: 0%CPEs: 31EXPL: 1

xfs_fsr in xfsdump creates a .fsr temporary directory with insecure permissions, which allows local users to read or overwrite arbitrary files on xfs filesystems. xfs_fsr en xfsdump crea un directorio temporal .fsr con permisos no seguros, que permite a usuarios locales leer o sobrescribir archivos arbitrarios en sistemas de archivos xfs. • http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=417894 http://osvdb.org/36716 http://secunia.com/advisories/25220 http://secunia.com/advisories/25425 http://secunia.com/advisories/25761 http://secunia.com/advisories/26867 http://www.mandriva.com/security/advisories?name=MDKSA-2007:134 http://www.novell.com/linux/security/advisories/2007_10_sr.html http://www.securityfocus.com/bid/23922 http://www.ubuntu.com/usn/usn-516-1 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •

CVSS: 7.2EPSS: 0%CPEs: 62EXPL: 0

xfsdq in xfsdump does not create quota information files securely, which allows local users to gain root privileges. xfsdq en xfsdump no crea los ficheros de información de cuota con seguridad, lo que permite a usuarios locales ganar privilegios de root. • ftp://patches.sgi.com/support/free/security/advisories/20030404-01-P http://www.debian.org/security/2003/dsa-283 http://www.kb.cert.org/vuls/id/111673 http://www.mandriva.com/security/advisories?name=MDKSA-2003:047 •