CVE-2008-4990

CVE-2008-4990

EPSS 0.3%

Enomaly Elastic Computing Platform (ECP), formerly Enomalism, before 2.1.1 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/enomalism2.pid temporary file.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://groups.google.com/group/enomalism/msg/11c2f51b3734b0ab?dmode=source http://secunia.com/advisories/33724 http://www.securityfocus.com/archive/1/500573/100/0/threaded http://www.securityfocus.com/bid/33544