[ Suresec Advisories ] - Kcheckpass file creation vulnerability Sep 07 2005 05:28PM
Suresec Advisories (advisories suresec org)
Suresec Security Advisory - #00006

Kcheckpass file creation vulnerability
Advisory: http://www.suresec.org/advisories/adv6.pdf


A lockfile handling error was found in kcheckpass which can,
in certain configurations be used to create world writable files.

Exploitation of this vulnerability may lead to elevated privileges .

The vulnerability was discovered by Ilja van Sprundel.

[ reply ]


Privacy Statement
Copyright 2010, SecurityFocus