Vulnerabilities > CVE-2005-3111 - Unspecified vulnerability in Debian Backupninja 0.8

CVSS 2.1 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

local

low complexity

debian

nessus

NVD

Published: 2005-09-30

Updated: 2017-07-11

Summary

The handler code for backupninja 0.8 and earlier creates temporary files with predictable filenames, which allows local users to modify arbitrary files via a symlink attack.

Vulnerable Configurations

Part	Description	Count
Application	Debian Debian Backupninja - Debian Backupninja 0.8	2

Nessus

NASL family	Debian Local Security Checks
NASL id	DEBIAN_DSA-827.NASL
description	Moritz Muehlenhoff discovered the handler code for backupninja creates a temporary file with a predictable filename, leaving it vulnerable to a symlink attack.
last seen	2020-06-01
modified	2020-06-02
plugin id	19796
published	2005-10-05
reporter	This script is Copyright (C) 2005-2019 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/19796
title	Debian DSA-827-1 : backupninja - insecure temporary file

Summary

Vulnerable Configurations

Nessus

References