FreeBSD : security/ossec-hids-* -- root escalation via temp files (36858e78-3963-11e4-ad84-000c29f6ae42)
High Nessus Plugin ID 77638
SynopsisThe remote FreeBSD host is missing one or more security-related updates.
DescriptionOSSEC reports :
This correction will create the temp file for the hosts deny file in /var/ossec and will use mktemp where available to create NON-predictable temp file name. In cases where mktemp is not available we have written a BAD version of mktemp, but should be a little better then just process id.
SolutionUpdate the affected packages.