cronic prior to 3 allows local users to write to arbitrary files via a symlink attack on a (1) cronic.out.$$, (2) cronic.err.$$, or (3) cronic.trace.$$ file in /tmp.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cronic project cronic 2 |
||
debian debian linux 8.0 |
||
debian debian linux 7.0 |
||
opensuse leap 42.1 |
||
opensuse opensuse 13.2 |