FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-12-11 14:10:47 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
6596bb80-d026-11d9-9aed-000e0c2e438ashtool -- insecure temporary file creation

A Zataz advisory reports that shtool contains a security flaw which could allow a malicious local user to create or overwrite the contents of arbitrary files. The attacker could fool a user into executing the arbitrary file possibly executing arbitrary code.


Discovery 2005-05-25
Entry 2005-07-09
shtool
<= 2.0.1

13767
http://www.zataz.net/adviso/shtool-05252005.txt