CVE ID:	CVE-2003-0924
Description:	netpbm 9.25 and earlier does not properly create temporary files, which allows local users to overwrite arbitrary files.
Test IDs:	1.3.6.1.4.1.25623.1.0.50585   1.3.6.1.4.1.25623.1.0.53124   1.3.6.1.4.1.25623.1.0.50648   1.3.6.1.4.1.25623.1.0.51074   1.3.6.1.4.1.25623.1.0.52835   1.3.6.1.4.1.25623.1.0.51391   1.3.6.1.4.1.25623.1.0.54693   1.3.6.1.4.1.25623.1.0.52796
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2003-0924 Debian Security Information: DSA-426 (Google Search) http://www.debian.org/security/2004/dsa-426 http://www.gentoo.org/security/en/glsa/glsa-200410-02.xml RedHat Security Advisories: RHSA-2004:030 http://www.redhat.com/support/errata/RHSA-2004-030.html RedHat Security Advisories: RHSA-2004:031 http://www.redhat.com/support/errata/RHSA-2004-031.html SGI Security Advisory: 20040201-01-U ftp://patches.sgi.com/support/free/security/advisories/20040201-01-U.asc http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:011 CERT/CC vulnerability note: VU#487102 http://www.kb.cert.org/vuls/id/487102 BugTraq ID: 9442 http://www.securityfocus.com/bid/9442 XForce ISS Database: netpbm-temp-insecure-file(14874) http://xforce.iss.net/xforce/xfdb/14874 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:804 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:810

New User Registration Email: UserID: Passwd: Please email me your monthly newsletters, informing the latest services, improvements & surveys. Please email me a vulnerability test announcement whenever a new test is added.     Privacy

Registered User Login   UserID:     Passwd:     Forgot userid or passwd? Email/Userid: