EMC Avamar Client 4.x, 5.x, and 6.x on HP-UX and Mac OS X, and the EMC Avamar plugin 4.x, 5.x, and 6.x for Oracle, uses world-writable permissions for cache directories, which allows local users to gain privileges via an unspecified symlink attack.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
emc avamar 5.0 |
||
emc avamar 5.0.0-407 |
||
emc avamar 4.0 |
||
emc avamar 4.1 |
||
emc avamar 5.0.4-26 |
||
emc avamar 6.0 |
||
emc avamar plugin 4.0 |
||
emc avamar plugin 6.0 |
||
emc avamar plugin 5.0 |
||
emc avamar plugin 6.1 |