Oval Definition:	oval:org.mitre.oval:def:10676
Revision Date: 2013-04-29 Version: 11 Title: The updatePosition function in lib/xmltok_impl.c in libexpat in Expat 2.0.1, as used in Python, PyXML, w3c-libwww, and other software, allows context-dependent attackers to cause a denial of service (application crash) via an XML document with crafted UTF-8 sequences that trigger a buffer over-read, a different vulnerability than CVE-2009-2625. Description: The dcopidlng script in KDE 3.2.x and 3.3.x creates temporary files with predictable filenames, which allows local users to overwrite arbitrary files via a symlink attack. Family: unix Class: vulnerability Status: ACCEPTED Reference(s): CVE-2005-0365 Platform(s): CentOS Linux 4 Oracle Linux 4 Red Hat Enterprise Linux 4 Product(s): Definition Synopsis RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 OR CentOS Linux 4.x OR Oracle Linux 4.x AND Configuration section kdelibs is earlier than 6:3.3.1-3.6 OR kdelibs-devel is earlier than 6:3.3.1-3.6
BACK