mailing list archives
[ Suresec Advisories ] - Kcheckpass file creation vulnerability
From: Suresec Advisories <advisories () suresec org>
Date: Wed, 07 Sep 2005 19:28:32 +0200
Suresec Security Advisory - #00006
Kcheckpass file creation vulnerability
A lockfile handling error was found in kcheckpass which can,
in certain configurations be used to create world writable files.
Exploitation of this vulnerability may lead to elevated privileges .
The vulnerability was discovered by Ilja van Sprundel.
- [ Suresec Advisories ] - Kcheckpass file creation vulnerability Suresec Advisories (Sep 07)