← volver
CVE-2011-2765

Insecure temporary file handling

EPSS 2.2%
pyro before 3.15 unsafely handles pid files in temporary directory locations and opening the pid file as root. An attacker can use this flaw to overwrite arbitrary files via symlinks.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://bugs.debian.org/631912https://github.com/irmen/Pyro3/commit/554e095a62c4412c91f981e72fd34a936ac2bf1ehttps://pythonhosted.org/Pyro/12-changes.html