Race Conditions

• Temporary file creation.

  • Most common case - creating a temporary file in a location both known, and with access, to an attacker.
  • Allows bypassing of the security model, changing internal program data structures and, in some cases, arbitrary code execution.

• Network related races

  • ARP poisoning.
  • DNS poisoning.