Predictable File Names Vulnerability in generate_doygen.pl in ACE before 6.2.7+dfsg-2

Predictable File Names Vulnerability in generate_doygen.pl in ACE before 6.2.7+dfsg-2

CVE-2014-6311 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

generate_doygen.pl in ace before 6.2.7+dfsg-2 creates predictable file names in the /tmp directory which allows attackers to gain elevated privileges.

Learn more about our Web Application Penetration Testing UK.