← back
CVE-2004-2502

CVE-2004-2502

EPSS 0.9%
im-switch before 11.4-46.1 in Fedora Core 2 allows local users to overwrite arbitrary files via a symlink attack on the imswitcher[PID] temporary file.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=126940http://packetstormsecurity.org/0407-advisories/fedora_im-switch_tempfile_race.txthttp://secunia.com/advisories/12037https://exchange.xforce.ibmcloud.com/vulnerabilities/16682http://www.osvdb.org/7772http://www.securityfocus.com/bid/10717