Required CVE Record Information
Description
policyd-weight 0.1.14 beta-16 and earlier allows local users to modify or delete arbitrary files via a symlink attack on temporary files that are used when creating a socket.
References 9 Total
- securityfocus.com: 28480 vdb-entry
- http://www.policyd-weight.org/
- secunia.com: 29738 third-party-advisory
- security.gentoo.org: GLSA-200804-11 vendor-advisory
- secunia.com: 29553 third-party-advisory
- osvdb.org: 43888 vdb-entry
- exchange.xforce.ibmcloud.com: policydweight-sockets-symlink(41565) vdb-entry
- debian.org: DSA-1531 vendor-advisory
- https://bugs.gentoo.org/show_bug.cgi?id=214403
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 9 Total
- securityfocus.com: 28480 vdb-entryx_transferred
- http://www.policyd-weight.org/ x_transferred
- secunia.com: 29738 third-party-advisoryx_transferred
- security.gentoo.org: GLSA-200804-11 vendor-advisoryx_transferred
- secunia.com: 29553 third-party-advisoryx_transferred
- osvdb.org: 43888 vdb-entryx_transferred
- exchange.xforce.ibmcloud.com: policydweight-sockets-symlink(41565) vdb-entryx_transferred
- debian.org: DSA-1531 vendor-advisoryx_transferred
- https://bugs.gentoo.org/show_bug.cgi?id=214403 x_transferred