The lvmcreate_initrd script in the lvm package in Trustix Secure Linux 1.5 through 2.1, and possibly other operating systems, allows local users to overwrite files via a symlink attack on temporary files.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
20 Nov 2024, 23:49
Type | Values Removed | Values Added |
---|---|---|
References | () http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=136308 - | |
References | () http://rhn.redhat.com/errata/RHBA-2004-232.html - | |
References | () http://www.securityfocus.com/bid/11290 - Patch, Vendor Advisory | |
References | () http://www.trustix.org/errata/2004/0050 - Patch, Vendor Advisory | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/17583 - | |
References | () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10632 - |
Information
Published : 2005-02-09 05:00
Updated : 2024-11-20 23:49
NVD link : CVE-2004-0972
Mitre link : CVE-2004-0972
CVE.ORG link : CVE-2004-0972
JSON object : View
Products Affected
lvm
- logical_volume_management_utilities
gentoo
- linux
CWE