The (1) post and (2) trigger scripts in sysstat 4.0.7 and previous versions allow local users to overwrite arbitrary files via symlink attacks on temporary files, a different vulnerability than CVE-2004-0108.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sysstat sysstat 4.0.7 |
||
sysstat sysstat 4.1.1 |
||
sgi propack 2.3 |
||
sgi propack 2.4 |
||
sysstat sysstat 4.1.7 |
||
sysstat sysstat 5.0.1 |
||
redhat sysstat 4.0.7-3 |
||
sysstat sysstat 4.1.5 |
||
sysstat sysstat 4.1.6 |
||
sysstat sysstat 4.1.2 |
||
sysstat sysstat 4.1.3 |
||
sysstat sysstat 4.1.4 |