• info
• discussion
• exploit
• solution
• references

KSymoops KSymoops-GZNM Insecure Temporary File Handling Symbolic Link Vulnerability

Solution:
Mandrake has released an advisory(MDKSA-2004:060) and updates to address this issue in Mandrake Linux. Users are advised to read the referenced advisory for further details regarding obtaining and applying appropriate updates.


GNU Ksymoops 2.4.5

• Mandrake ksymoops-2.4.5-1.1.C21mdk.i586.rpm
  Mandrake Corporate Server 2.1
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake ksymoops-2.4.5-1.1.C21mdk.x86_64.rpm
  Mandrake Corporate Server 2.1/X86_64
  http://www.mandrakesecure.net/en/ftp.php

GNU Ksymoops 2.4.8

• Mandrake ksymoops-2.4.8-1.1.91mdk.i586.rpm
  Mandrake Linux 9.1
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake ksymoops-2.4.8-1.1.91mdk.ppc.rpm
  Mandrake Linux 9.1/PPC
  http://www.mandrakesecure.net/en/ftp.php

GNU Ksymoops 2.4.9

• Mandrake ksymoops-2.4.9-2.1.100mdk.amd64.rpm
  Mandrake Linux 10.0/AMD64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake ksymoops-2.4.9-2.1.100mdk.i586.rpm
  Mandrake Linux 10.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake ksymoops-2.4.9-2.1.92mdk.amd64.rpm
  Mandrake Linux 9.2/AMD64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake ksymoops-2.4.9-2.1.92mdk.i586.rpm
  Mandrake Linux 9.2
  http://www.mandrakesecure.net/en/ftp.php