CVE-2004-0107
CVE-2004-0107
The (1) post and (2) trigger scripts in sysstat 4.0.7 and earlier allow local users to overwrite arbitrary files via symlink attacks on temporary files, a different vulnerability than CVE-2004-0108.
Produtos afetados
n/a · n/aQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
ftp://patches.sgi.com/support/free/security/advisories/20040302-01-U.aschttps://exchange.xforce.ibmcloud.com/vulnerabilities/15428https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10737https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A849https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A862http://www.ciac.org/ciac/bulletins/o-097.shtmlhttp://www.osvdb.org/6884http://www.redhat.com/support/errata/RHSA-2004-053.htmlhttp://www.redhat.com/support/errata/RHSA-2004-093.htmlhttp://www.securityfocus.com/bid/9838