CVE-1999-1091

Published: Sep 12, 2001

Modified: Aug 1, 2024

PUBLISHED

Description

UNIX news readers tin and rtin create the /tmp/.tin_log file with insecure permissions and follow symlinks, which allows attackers to modify the permissions of files writable by the user via a symlink attack.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

19960903 [BUG] Vulnerability in TIN

mailing-list

x_refsource_BUGTRAQ

tin-tmpfile(431)

vdb-entry

x_refsource_XF

19960903 Re: BoS: [BUG] Vulnerability in TIN

mailing-list

x_refsource_BUGTRAQ

19970329 symlink bug in tin/rtin

mailing-list

x_refsource_BUGTRAQ

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-1999-1091

Description

Affected Products

References