In swtpm prior to 0.4.2 and 0.5.x prior to 0.5.1, a local attacker may be able to overwrite arbitrary files via a symlink attack against a temporary file such as TMP2-00.permall.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
swtpm project swtpm |
||
swtpm project swtpm 0.5.0 |