The (1) fence_apc and (2) fence_apc_snmp programs, as used in (a) fence 2.02.00-r1 and possibly (b) cman, when running in verbose mode, allows local users to append to arbitrary files via a symlink attack on the apclog temporary file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gentoo cman 2.02.00 |
||
gentoo fence 2.02.00 |