• info
• discussion
• exploit
• solution
• references

SGMLtools Temporary File Permission Vulnerability

Solution:
Upgrades available:


Cees De Groot SGMLtools 1.0.7

• Red Hat Inc. 5.2 alpha sgml-tools-1.0.7-1.1.alpha.rpm
  ftp://updates.redhat.com/5.2/alpha/sgml-tools-1.0.7-1.1.alpha.rpm


• Red Hat Inc. 5.2 i386 sgml-tools-1.0.7-1.1.i386.rpm
  ftp://updates.redhat.com/5.2/i386/sgml-tools-1.0.7-1.1.i386.rpm


• Red Hat Inc. 5.2 sparc sgml-tools-1.0.7-1.1.sparc.rpm
  ftp://updates.redhat.com/5.2/sparc/sgml-tools-1.0.7-1.1.sparc.rpm

Cees De Groot SGMLtools 1.0.9

• MandrakeSoft 1.0.1 i386 sgml-tools-1.0.9-8.2mdk.i586.rpm
  ftp://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/1.0.1/RPMS /sgml-tools-1.0.9-8.2mdk.i586.rpm


• MandrakeSoft 6.0 i386 sgml-tools-1.0.9-3.1mdk.i586.rpm
  ftp://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/6.0/RPMS/s gml-tools-1.0.9-3.1mdk.i586.rpm


• MandrakeSoft 6.1 i386 sgml-tools-1.0.9-3.1mdk.i586.rpm
  ftp://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/6.1/RPMS/s gml-tools-1.0.9-3.1mdk.i586.rpm


• MandrakeSoft 7.1 i386 sgml-tools-1.0.9-8.2mdk.i586.rpm
  ftp://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/7.1/RPMS/s gml-tools-1.0.9-8.2mdk.i586.rpm


• MandrakeSoft 7.2 i386 sgml-tools-1.0.9-8.1mdk.i586.rpm
  ftp://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/7.2/RPMS/s gml-tools-1.0.9-8.1mdk.i586.rpm


• Red Hat Inc. 6.2 alpha sgml-tools-1.0.9-6.2.alpha.rpm
  ftp://updates.redhat.com/6.2/alpha/sgml-tools-1.0.9-6.2.alpha.rpm


• Red Hat Inc. 6.2 i386 sgml-tools-1.0.9-6.2.i386.rpm
  ftp://updates.redhat.com/6.2/i386/sgml-tools-1.0.9-6.2.i386.rpm


• Red Hat Inc. 6.2 sparc sgml-tools-1.0.9-6.2.sparc.rpm
  ftp://updates.redhat.com/6.2/sparc/sgml-tools-1.0.9-6.2.sparc.rpm


• Red Hat Inc. 7.0 alpha sgml-tools-1.0.9-9.alpha.rpm
  ftp://updates.redhat.com/7.0/alpha/sgml-tools-1.0.9-9.alpha.rpm


• Red Hat Inc. 7.0 i386 sgml-tools-1.0.9-9.i386.rpm
  ftp://updates.redhat.com/7.0/i386/sgml-tools-1.0.9-9.i386.rpm