Vulnerabilities > CVE-2007-2030 - Unspecified vulnerability in Redhat Enterprise Linux and Fedora Core
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
NONE Availability impact
NONE Summary
lharc.c in lha does not securely create temporary files, which might allow local users to read or write files by creating a file before LHA is invoked.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| OS | 4 |
Nessus
| NASL family | Mandriva Local Security Checks |
| NASL id | MANDRAKE_MDKSA-2007-117.NASL |
| description | lharc.c in lha does not securely create temporary files, which might allow local users to read or write files by creating a file before LHA is invoked. Updated packages have been patched to prevent this issue. |
| last seen | 2020-06-01 |
| modified | 2020-06-02 |
| plugin id | 25441 |
| published | 2007-06-07 |
| reporter | This script is Copyright (C) 2007-2019 Tenable Network Security, Inc. |
| source | https://www.tenable.com/plugins/nessus/25441 |
| title | Mandrake Linux Security Advisory : lha (MDKSA-2007:117) |
Statements
| contributor | Joshua Bressers |
| lastmodified | 2007-04-18 |
| organization | Red Hat |
| statement | Red Hat is aware of this issue and is tracking it via the following bug: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=236585 The Red Hat Security Response Team has rated this issue as having low security impact, a future update may address this flaw. More information regarding issue severity can be found here: http://www.redhat.com/security/updates/classification/ |