PT-2002-1227 · Gpl · Maelstrom

Published

2002-03-15

Updated

2008-11-04

CVE-2002-0141

CVSS v2.0

1.2

Low

Vector

AV:L/AC:H/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Maelstrom GPL version 3.0.1

Description The issue allows local users to overwrite arbitrary files of other Maelstrom users via a symlink attack on the /tmp/f file.

Recommendations For Maelstrom GPL version 3.0.1, consider restricting access to the /tmp/f file to prevent symlink attacks until a patch is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2002-0141

Affected Products

Maelstrom

PT-2002-1227 · Gpl · Maelstrom

CVE-2002-0141

Related Identifiers

Affected Products

References · 4