CVE-2006-0512
Published: 2 February 2006
PADL MigrationTools 46 creates temporary files insecurely, which allows local users to overwrite arbitrary files via a symlink attack on the temporary files, which are not properly created by (1) migrate_all_online.sh, (2) migrate_all_offline.sh, (3) migrate_all_netinfo_online.sh, (4) migrate_all_netinfo_offline.sh, (5) migrate_all_nis_online.sh, (6) migrate_all_nis_offline.sh, (7) migrate_all_nisplus_online.sh, and (8) migrate_all_nisplus_offline.sh.
Priority
Status
Package | Release | Status |
---|---|---|
migrationtools Launchpad, Ubuntu, Debian |
dapper |
Ignored
(end of life)
|
edgy |
Ignored
(end of life, was needed)
|
|
feisty |
Ignored
(end of life, was needed)
|
|
gutsy |
Ignored
(end of life, was needed)
|
|
hardy |
Not vulnerable
(migrationtools-47)
|
|
intrepid |
Not vulnerable
(migrationtools-47)
|
|
jaunty |
Not vulnerable
(migrationtools-47)
|
|
karmic |
Not vulnerable
(migrationtools-47)
|
|
upstream |
Needs triage
|