Published: 02/02/2006 Updated: 08/12/2016

CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9

VMScore: 187

Vector: AV:L/AC:L/Au:N/C:N/I:P/A:N

PADL MigrationTools 46 creates temporary files insecurely, which allows local users to overwrite arbitrary files via a symlink attack on the temporary files, which are not properly created by (1) migrate_all_online.sh, (2) migrate_all_offline.sh, (3) migrate_all_netinfo_online.sh, (4) migrate_all_netinfo_offline.sh, (5) migrate_all_nis_online.sh, (6) migrate_all_nis_offline.sh, (7) migrate_all_nisplus_online.sh, and (8) migrate_all_nisplus_offline.sh.

Vulnerable Product	Search on Vulmon	Subscribe to Product
padl software migrationtools 46

Jason Hoover discovered that migrationtools, a collection of scripts to migrate user data to LDAP creates several temporary files insecurely, which might lead to denial of service through a symlink attack For the stable distribution (sarge) this problem has been fixed in version 46-1sarge1 For the unstable distribution (sid) this problem has been ...

NVD-CWE-Other http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=338920 http://secunia.com/advisories/22243 http://www.vupen.com/english/advisories/2005/2427 https://www.debian.org/security/2006/dsa-1187 https://nvd.nist.gov https://www.debian.org/security/./dsa-1187

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2006-0512

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect