Insecure Temporary File
CVE-2011-4119
Summary
caml-light <= 0.75 uses mktemp() insecurely, and also does unsafe things in /tmp during make install.
- LOW
- NETWORK
- HIGH
- UNCHANGED
- NONE
- NONE
- HIGH
- HIGH
CWE-377 - Insecure Temporary File
Creating and using insecure temporary files can leave application and system data vulnerable to attack.
References
Advisory Timeline
- Published