PT-2001-1954 · Tripwire · Tripwire
Published
2001-10-18
·
Updated
2017-10-10
·
CVE-2001-0774
CVSS v2.0
4.6
Medium
| Vector | AV:L/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions:
Tripwire versions 1.3.1, 2.2.1, 2.3.0
Description:
The issue allows local users to overwrite arbitrary files and possibly gain privileges via a symbolic link attack on temporary files.
Recommendations:
For version 1.3.1, 2.2.1, and 2.3.0, at the moment, there is no information about a newer version that contains a fix for this issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Tripwire