The lockwrap function in port-proxy/bin/openshift-port-proxy-cfg in Red Hat OpenShift Origin prior to 1.1 allows local users to overwrite arbitrary files via a symlink attack on a temporary file with a predictable name in /tmp.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
redhat openshift |
||
redhat openshift origin 1.0.5 |