Published: 18/11/2012 Updated: 13/02/2023

CVSS v2 Base Score: 3.6 | Impact Score: 4.9 | Exploitability Score: 3.9

VMScore: 320

Vector: AV:L/AC:L/Au:N/C:N/I:P/A:P

GlusterFS 3.3.0, as used in Red Hat Storage server 2.0, allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable names.

Vulnerable Product	Search on Vulmon	Subscribe to Product
gluster glusterfs 3.3.0

Synopsis Low: Red Hat Storage 20 security, bug fix, and enhancement update #3 Type/Severity Security Advisory: Low Topic Updated glusterfs packages that fix multiple security issues, several bugs,and contain enhancements are now available for Red Hat Storage 20The Red Hat Security Response Team has rated ...

Debian Bug report logs - #693112 glusterfs: CVE-2012-4417 Package: glusterfs; Maintainer for glusterfs is Patrick Matthäi <pmatthaei@debianorg>; Reported by: Moritz Muehlenhoff <jmm@inutilorg> Date: Tue, 13 Nov 2012 08:21:02 UTC Severity: important Tags: help, security, upstream Fixed in versions 340~qa5-1, glu ...

Debian Bug report logs - #704944 glusterfs: cve-2012-5635 Package: src:glusterfs; Maintainer for src:glusterfs is Patrick Matthäi <pmatthaei@debianorg>; Reported by: Michael Gilbert <mgilbert@debianorg> Date: Mon, 8 Apr 2013 02:06:02 UTC Severity: important Fixed in version glusterfs/350-1 Done: Patrick Matt ...

CWE-264 http://www.securitytracker.com/id?1027756 https://bugzilla.redhat.com/show_bug.cgi?id=856341 http://www.securityfocus.com/bid/56522 http://rhn.redhat.com/errata/RHSA-2012-1456.html https://exchange.xforce.ibmcloud.com/vulnerabilities/80074 https://access.redhat.com/errata/RHSA-2012:1456 https://nvd.nist.gov

CVE-2012-4417

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect