CVE-2004-0107

Name of the Vulnerable Software and Affected Versions sysstat versions 4.0.7 and earlier

Description The issue allows local users to overwrite arbitrary files via symlink attacks on temporary files created by the post and trigger scripts in sysstat. This can lead to a violation of confidentiality, integrity, and availability of protected information. The exploitation of this issue can be carried out locally.

Recommendations For sysstat versions 4.0.7 and earlier, consider restricting access to the post and trigger scripts as a temporary workaround until a patch is available. Additionally, monitor system logs for suspicious activity related to temporary file creation and modification. At the moment, there is no information about a newer version that contains a fix for this vulnerability.