You may not know this, but creating and using files in /tmp is dangerous.“ Why?” you ask. Well, /tmp is world readable and world writable, meaning that any user on the system may read or write to it. Therefore, when an application creates files in /tmp, it must take special care to create those files … [Read more…]
Did you know that misuse of the /tmp directory is one of the most common security flaws? If you search mitre for the keyword “tmp”, you’ll find a plethora of vulnerabilities (529 at the time of this writing). Because /tmp is a world-writable directory, applications need to be very careful about how they create and … [Read more…]
As a security professional and hobbyist, I often deal with security vulnerabilities that are caused by race conditions. By their very nature, race conditions are nondeterministic, which makes them hard to diagnose, difficult to reproduce, and tedious to debug. They can cause serious security vulnerabilities and go quietly undetected for years. Once a race condition … [Read more…]
Description Natural Language Toolkit (NLTK) prior to version 3.4.5 is vulnerable to a directory traversal, allowing attackers to write arbitrary files via a ../ (dot dot slash) in an NLTK package (ZIP archive) that is mishandled during extraction. Vulnerability Analysis NLTK data packages provide linguistic data sets for use in natural language processing. These data … [Read more…]
This article details my discovery of CVE-2019-14452.
This is the third part in a three-part series that chronicles how I discovered three vulnerabilities over the course of a day.
This is the second in a three-part series that chronicles how I discovered three vulnerabilities over the course of a day.
This is the first in a three-part series that chronicles how I discovered three vulnerabilities over the course of a day.