>> Gentoo Security Update Fixes GNU shtool and ocaml-mysql Issues
Title : Gentoo Security Update Fixes GNU shtool and ocaml-mysql Issues VUPEN ID : VUPEN/ADV-2005-0739 CVE ID : CVE-2005-1751 - CVE-2005-1759 CWE ID : CWE-
Rated as : Low Risk
Remotely Exploitable : No Locally Exploitable : Yes Release Date : 2005-06-13
Technical Description
Gentoo has released a security patch to correct a vulnerability identified in GNU shtool and ocaml-mysql. The problem is that GNU shtool insecurely creates temporary files with predictable filenames, which could be exploited by a local attacker to overwrite arbitrary files via symlink attacks.
Subscribe to VUPEN VNS and receive real-time e-mail and SMS alerts when new advisories or patches relevant to your systems and network configurations are available.
Feedback If you have additional information or corrections for this security advisory please submit them via our contact form.
