The (1) check_update.sh and (2) rkhunter script in Rootkit Hunter prior to 1.2.3-r1 create temporary files with predictable file names, which allows local users to overwrite arbitrary files via a symlink attack.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gentoo rootkit hunter 1.2.1 |
||
gentoo rootkit hunter 1.2.2 |
||
gentoo rootkit hunter 1.2 |
||
gentoo rootkit hunter 1.2.3 |