CDRTools CDRecord Local Insecure File Creation Vulnerability

Bugtraq ID: 12891
Class: Design Error
CVE: CVE-2005-0866
Remote: No
Local: Yes
Published: Mar 24 2005 12:00AM
Updated: Jul 12 2009 11:56AM
Credit: Javier Fernandez-Sanguino Pena is credited with the discovery of this issue.
Vulnerable: CDRTools CDRTools 2.0.1
+ MandrakeSoft Corporate Server 3.0 x86_64
+ MandrakeSoft Corporate Server 3.0
+ Mandriva Linux Mandrake 10.2 x86_64
+ Mandriva Linux Mandrake 10.2
+ Mandriva Linux Mandrake 10.1 x86_64
+ Mandriva Linux Mandrake 10.1
+ Mandriva Linux Mandrake 10.0 AMD64
+ Mandriva Linux Mandrake 10.0
+ Mandriva Linux Mandrake 9.2 amd64
+ Mandriva Linux Mandrake 9.2
CDRTools CDRTools 2.0
+ Ubuntu Ubuntu Linux 4.1 ppc
+ Ubuntu Ubuntu Linux 4.1 ia64
+ Ubuntu Ubuntu Linux 4.1 ia32
CDRTools CDRecord 1.11
+ MandrakeSoft Corporate Server 2.1
+ Mandriva Linux Mandrake 9.0
+ Mandriva Linux Mandrake 8.2 ppc
+ Mandriva Linux Mandrake 8.2
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus