MidnightBSD

Advisories for helix_code

CVE-2000-0722 MEDIUM

Helix GNOME Updater helix-update 0.5 and earlier allows local users to install arbitrary RPM packages by creating the /tmp/helix-install installation directory before root has begun installing packages.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
helix_code gnome_updater 0.1
helix_code gnome_updater 0.2
helix_code gnome_updater 0.5
helix_code gnome_updater 0.4
helix_code gnome_updater 0.3
CVE-2000-0723 LOW

Helix GNOME Updater helix-update 0.5 and earlier does not properly create /tmp directories, which allows local users to create empty system configuration files such as /etc/config.d/bashrc, /etc/config.d/csh.cshrc, and /etc/rc.config.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
helix_code gnome_installer 0.2
CVE-2000-0724 MEDIUM

The go-gnome Helix GNOME pre-installer allows local users to overwrite arbitrary files via a symlink attack on various files in /tmp, including uudecode, snarf, and some installer files.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
helix_code go-gnome_pre-installer 1.5