CVE-2004-0217

CVE-2004-0217

EPSS 0.5%

The LiveUpdate capability (liveupdate.sh) in Symantec AntiVirus Scan Engine 4.0 and 4.3 for Red Hat Linux allows local users to create or append to arbitrary files via a symlink attack on /tmp/LiveUpdate.log.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://marc.info/?l=bugtraq&m=107694800908164&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/15215 http://www.securityfocus.com/bid/9662