Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2015-3142
Description:The kernel-invoked coredump processor in Automatic Bug Reporting Tool (ABRT) does not properly check the ownership of files before writing core dumps to them, which allows local users to obtain sensitive information by leveraging write permissions to the working directory of a crashed application.
Test IDs: None available
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2015-3142
BugTraq ID: 75116
http://www.securityfocus.com/bid/75116
http://www.openwall.com/lists/oss-security/2015/04/17/5
RedHat Security Advisories: RHSA-2015:1083
http://rhn.redhat.com/errata/RHSA-2015-1083.html
RedHat Security Advisories: RHSA-2015:1210
http://rhn.redhat.com/errata/RHSA-2015-1210.html




© 1998-2021 E-Soft Inc. All rights reserved.