Displaying 1 result from an estimated 1 matches for "check_log_file".
Did you mean:
check_doc_file
1997 Oct 06
0
KSR[T] Advisory #3: updatedb / crontabs
...he symbolic link.
SuSE Linux 5.0: makewhatis uses /tmp, this allows
attackers to overwrite files as root. They cannot
control the data being written.
The system crontab also calls updatedb.
check_log_file() contains a SERIOUS security hole that
will allow an intruder to write over any file on the
system, with whatever he/she wants. There are numerous
other /tmp file problems with the default crontab,
it is highly re...