freeradius-dialupadmin in freeradius 2.0.4 allows local users to overwrite arbitrary files via a symlink attack on temporary files in (1) backup_radacct, (2) clean_radacct, (3) monthly_tot_stats, (4) tot_stats, and (5) truncate_radacct.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
freeradius freeradius 2.0.4 |