2.1
CVE-2012-5530
- EPSS 0.37%
- Veröffentlicht 29.11.2012 13:14:37
- Zuletzt bearbeitet 16.06.2026 23:46:57
- Quelle secalert@redhat.com
- CVE-Watchlists
- Unerledigt
The (1) pcmd and (2) pmlogger init scripts in Performance Co-Pilot (PCP) before 3.6.10 allow local users to overwrite arbitrary files via a symlink attack on a /var/tmp/##### temporary file.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Sgi ≫ Performance Co-pilot Version <= 3.6.9
Sgi ≫ Performance Co-pilot Version2.1.1
Sgi ≫ Performance Co-pilot Version2.1.2
Sgi ≫ Performance Co-pilot Version2.1.3
Sgi ≫ Performance Co-pilot Version2.1.4
Sgi ≫ Performance Co-pilot Version2.1.5
Sgi ≫ Performance Co-pilot Version2.1.6
Sgi ≫ Performance Co-pilot Version2.1.7
Sgi ≫ Performance Co-pilot Version2.1.8
Sgi ≫ Performance Co-pilot Version2.1.9
Sgi ≫ Performance Co-pilot Version2.1.10
Sgi ≫ Performance Co-pilot Version2.1.11
Sgi ≫ Performance Co-pilot Version2.2
Sgi ≫ Performance Co-pilot Version3.6.4
Sgi ≫ Performance Co-pilot Version3.6.5
Sgi ≫ Performance Co-pilot Version3.6.6
Sgi ≫ Performance Co-pilot Version3.6.8
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.37% | 0.287 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 2.1 | 3.9 | 2.9 |
AV:L/AC:L/Au:N/C:N/I:P/A:N
|
http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00024.html
http://www.securityfocus.com/bid/56656
https://bugzilla.novell.com/show_bug.cgi?id=782967
https://bugzilla.redhat.com/show_bug.cgi?id=875842