Vulnwatch mailing list archives

Re: AFFLIB(TM): Time-of-Check-Time-of-Use File Race

From: VSR Advisories <advisories () vsecurity com>
Date: Mon, 30 Apr 2007 07:34:42 -0400


This specific vulnerability is not exploitable due to the referenced
code not being executed.  I appologize for the misinformation.

Updates to each vulnerability can be found here:

http://www.vsecurity.com/bulletins/advisories/2007/afflib-toctou.txt
http://www.vsecurity.com/bulletins/advisories/2007/afflib-overflows.txt
http://www.vsecurity.com/bulletins/advisories/2007/afflib-shellinject.txt
http://www.vsecurity.com/bulletins/advisories/2007/afflib-fmtstr.txt

We are currently not aware of any additional exploitable flaws in
AFFLIB.

tim

Current thread:

AFFLIB(TM): Time-of-Check-Time-of-Use File Race VSR Advisories (Apr 29)
- Re: AFFLIB(TM): Time-of-Check-Time-of-Use File Race VSR Advisories (Apr 30)