The (1) cfmailfilter and (2) cfcron.in files for cfengine 1.6.5 allow local users to overwrite arbitrary files via a symlink attack on temporary files, a different vulnerability than CVE-2005-2960.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gnu cfengine 1.6.5 |