PT-2006-2876 · Avast · Avast! 4 Linux Home Edition

Julien L

Published

2006-04-20

Updated

2018-10-18

CVE-2006-1892

CVSS v2.0

4.9

Medium

Vector

AV:L/AC:L/Au:N/C:C/I:N/A:N

Name of the Vulnerable Software and Affected Versions avast! 4 Linux Home Edition version 1.0.5

Description The issue allows local users to modify permissions of arbitrary files via a symlink attack on the /tmp/ avast4 temporary directory.

Recommendations For avast! 4 Linux Home Edition version 1.0.5, consider restricting access to the /tmp/ avast4 directory to prevent symlink attacks until a patch is available.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2006-1892

Affected Products

Avast! 4 Linux Home Edition

PT-2006-2876 · Avast · Avast! 4 Linux Home Edition

CVE-2006-1892

Related Identifiers

Affected Products

References · 7