1.2
CVSSv2

CVE-2011-4617

Published: 31/12/2011 Updated: 21/11/2024

Vulnerability Summary

virtualenv.py in virtualenv prior to 1.5 allows local users to overwrite arbitrary files via a symlink attack on a certain file in /tmp/.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

python virtualenv

python virtualenv 0.8

python virtualenv 0.8.1

python virtualenv 0.8.2

python virtualenv 0.8.3

python virtualenv 0.8.4

python virtualenv 0.9

python virtualenv 0.9.1

python virtualenv 0.9.2

python virtualenv 1.0

python virtualenv 1.1

python virtualenv 1.1.1

python virtualenv 1.2

python virtualenv 1.3

python virtualenv 1.3.1

python virtualenv 1.3.2

python virtualenv 1.3.3

python virtualenv 1.3.4

python virtualenv 1.4

python virtualenv 1.4.1

python virtualenv 1.4.2

python virtualenv 1.4.3

python virtualenv 1.4.4

python virtualenv 1.4.5

python virtualenv 1.4.6

python virtualenv 1.4.7

python virtualenv 1.4.8

Vendor Advisories

Debian Bug report logs - #652653 python-virtualenv: insecure /tmp file handling Package: python-virtualenv; Maintainer for python-virtualenv is Debian Python Modules Team <python-modules-team@listsaliothdebianorg>; Source for python-virtualenv is src:python-virtualenv (PTS, buildd, popcon) Reported by: Nico Golde <nion ...