The (1) pcmd and (2) pmlogger init scripts in Performance Co-Pilot (PCP) prior to 3.6.10 allow local users to overwrite arbitrary files via a symlink attack on a /var/tmp/##### temporary file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sgi performance co-pilot 2.1.9 |
||
sgi performance co-pilot 2.1.8 |
||
sgi performance co-pilot 2.1.11 |
||
sgi performance co-pilot 2.1.2 |
||
sgi performance co-pilot 3.6.6 |
||
sgi performance co-pilot 3.6.5 |
||
sgi performance co-pilot 2.1.7 |
||
sgi performance co-pilot 2.1.10 |
||
sgi performance co-pilot 3.6.8 |
||
sgi performance co-pilot 3.6.4 |
||
sgi performance co-pilot 2.1.5 |
||
sgi performance co-pilot 2.1.6 |
||
sgi performance co-pilot |
||
sgi performance co-pilot 2.2 |
||
sgi performance co-pilot 2.1.4 |
||
sgi performance co-pilot 2.1.3 |
||
sgi performance co-pilot 2.1.1 |