CVE-2008-1569

Name of the Vulnerable Software and Affected Versions policyd-weight versions 0.1.14 beta-16 and earlier

Description The issue allows local users to modify or delete arbitrary files via a symlink attack on temporary files used when creating a socket. Multiple vulnerabilities in the policyd-weight package may lead to breaches of confidentiality, integrity, and availability of protected information, potentially exploitable by local attackers.

Recommendations For policyd-weight versions 0.1.14 beta-16 and earlier, consider restricting access to the socket creation process to minimize the risk of exploitation until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.