← voltar
CVE-2011-2765

Insecure temporary file handling

EPSS 2.2%
pyro before 3.15 unsafely handles pid files in temporary directory locations and opening the pid file as root. An attacker can use this flaw to overwrite arbitrary files via symlinks.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://bugs.debian.org/631912https://github.com/irmen/Pyro3/commit/554e095a62c4412c91f981e72fd34a936ac2bf1ehttps://pythonhosted.org/Pyro/12-changes.html