Files ≈ Packet Storm

Files ≈ Packet Storm Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 05:09:31 GMT Packet Storm 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=1256334523&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2Ffiledesc%2Fsecunia-itf.txt.html%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.1256334523.1338181771.1338181771.1338181771.1%3B%2B__utmz%3D32867617.1338181771.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) Bournal Insecure Temporary Files http://packetstormsecurity.org/files/86594/secunia-itf.txt http://packetstormsecurity.org/files/86594/secunia-itf.txt http://packetstormsecurity.org/files/86594/Bournal-Insecure-Temporary-Files.html Wed, 24 Feb 2010 00:40:41 GMT Secunia Research has discovered a security issue in Bournal, which can be exploited by malicious, local users to perform certain actions with escalated privileges. The script uses temporary files in an insecure manner, which can be exploited to e.g. overwrite arbitrary files via symlink attacks when running the update check via the "--hack_the_gibson" parameter. Version 1.4 is affected.