CVE-2002-0210

Name of the Vulnerable Software and Affected Versions TOLIS Group Backup and Restore Utility (BRU) version 17.0

Description The issue allows local users to overwrite arbitrary files via a symlink attack on the /tmp/brutest.$$ temporary file. This is related to the setlicense functionality.

Recommendations For version 17.0, consider restricting access to the setlicense functionality until a patch is available to prevent exploitation of the symlink attack vulnerability. As a temporary workaround, monitor and restrict writes to the /tmp/brutest.$$ temporary file to minimize the risk of arbitrary file overwrites.