CVE-2004-0064

Name of the Vulnerable Software and Affected Versions SuSE version 9.0

Description The issue allows local users to overwrite arbitrary files via a symlink attack on files within the tmp.SuSEconfig.gnome-filesystem.$RANDOM temporary directory. This is related to the SuSEconfig.gnome-filesystem script for YaST.

Recommendations For SuSE version 9.0, consider restricting access to the SuSEconfig.gnome-filesystem script to prevent local users from exploiting this issue. As a temporary workaround, monitor and restrict the use of the tmp.SuSEconfig.gnome-filesystem.$RANDOM temporary directory to minimize the risk of exploitation.