CVE-2003-0847

Name of the Vulnerable Software and Affected Versions susewm package on SuSE Linux 8.2 Pro

Description The issue allows local users to overwrite arbitrary files via a symlink attack on the susewm.$$ temporary file, which is created by SuSEconfig.susewm. This could potentially lead to unauthorized access or modification of system files.

Recommendations For susewm package on SuSE Linux 8.2 Pro, consider restricting access to the SuSEconfig.susewm script until a fix is available, and avoid using the script with elevated privileges to minimize potential damage from a symlink attack.