FreeBSD : p5-DBI -- insecure temporary file creation vulnerability (8cfb6f42-d2b0-11da-a672-000e0c2e438a)
Low Nessus Plugin ID 21470
SynopsisThe remote FreeBSD host is missing one or more security-related updates.
DescriptionJavier Fernandez-Sanguino Pena reports :
The DBI library, the Perl5 database interface, creates a temporary PID file in an insecure manner. This can be exploited by a malicious user to overwrite arbitrary files owned by the person executing the parts of the library.
SolutionUpdate the affected packages.