FreeBSD : kdelibs -- insecure temporary file creation (29dd0065-81fa-11d9-a9e7-0001020eed82)

This script is Copyright (C) 2005-2013 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing one or more security-related
updates.

Description :

Davide Madrisan reports :

The `dcopidlng' script in the KDE library package
(kdelibs-3.3.2/dcop/dcopidlng/dcopidlng) creates temporary files in a
unsecure manner.

Note: dcopidlng is only used at build time, so only users installing
KDE are vulnerable, not users already running KDE.

See also :

http://bugs.kde.org/show_bug.cgi?id=97608
http://marc.info/?l=bugtraq&m=110814653804757
http://www.nessus.org/u?a54b3f6c

Solution :

Update the affected packages.

Risk factor :

Low / CVSS Base Score : 2.1
(CVSS2#AV:L/AC:L/Au:N/C:N/I:P/A:N)

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 18881 (freebsd_pkg_29dd006581fa11d9a9e70001020eed82.nasl)

Bugtraq ID:

CVE ID: CVE-2005-0365

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now