Linux-HA Heartbeat Insecure Temporary File Creation Vulnerability

Bugtraq ID: 14233
Class: Design Error
CVE: CVE-2005-2231
Remote: No
Local: Yes
Published: Jul 12 2005 12:00AM
Updated: Jul 12 2009 04:06PM
Credit: Discovery is credited to Eric Romang.
Vulnerable: Ubuntu Ubuntu Linux 5.0 4 powerpc
Ubuntu Ubuntu Linux 5.0 4 i386
Ubuntu Ubuntu Linux 5.0 4 amd64
Ubuntu Ubuntu Linux 4.1 ppc
Ubuntu Ubuntu Linux 4.1 ia64
Ubuntu Ubuntu Linux 4.1 ia32
MandrakeSoft Corporate Server 3.0 x86_64
MandrakeSoft Corporate Server 3.0
Linux-HA heartbeat 1.2.3
- Debian Linux 3.1 sparc
 - Debian Linux 3.1 s/390
 - Debian Linux 3.1 ppc
 - Debian Linux 3.1 mipsel
 - Debian Linux 3.1 mips
 - Debian Linux 3.1 m68k
 - Debian Linux 3.1 ia-64
 - Debian Linux 3.1 ia-32
 - Debian Linux 3.1 hppa
 - Debian Linux 3.1 arm
 - Debian Linux 3.1 alpha
 - Debian Linux 3.1
Linux-HA heartbeat 1.2.2
Linux-HA heartbeat 0.9.4 d
Linux-HA heartbeat 0.9.4
Linux-HA heartbeat 0.4.9 c
Linux-HA heartbeat 0.4.9 b
Linux-HA heartbeat 0.4.9 a
Linux-HA heartbeat 0.4.9 .1
+ Conectiva Linux 8.0
Linux-HA heartbeat 0.4.9
- Debian Linux 3.0 sparc
 - Debian Linux 3.0 s/390
 - Debian Linux 3.0 ppc
 - Debian Linux 3.0 mipsel
 - Debian Linux 3.0 mips
 - Debian Linux 3.0 m68k
 - Debian Linux 3.0 ia-64
 - Debian Linux 3.0 ia-32
 - Debian Linux 3.0 hppa
 - Debian Linux 3.0 arm
 - Debian Linux 3.0 alpha
 - Debian Linux 3.0
Gentoo Linux
Debian Linux 3.1 sparc
Debian Linux 3.1 s/390
Debian Linux 3.1 ppc
Debian Linux 3.1 mipsel
Debian Linux 3.1 mips
Debian Linux 3.1 m68k
Debian Linux 3.1 ia-64
Debian Linux 3.1 ia-32
Debian Linux 3.1 hppa
Debian Linux 3.1 arm
Debian Linux 3.1 amd64
Debian Linux 3.1 alpha
Debian Linux 3.1
Conectiva Linux 10.0
Conectiva Linux 9.0
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus