PT-2008-3861 · Opensuse · Opensuse-Updater
Published
2008-06-06
·
Updated
2008-09-11
·
CVE-2008-2389
CVSS v2.0
4.9
Medium
| Vector | AV:L/AC:L/Au:N/C:C/I:N/A:N |
Name of the Vulnerable Software and Affected Versions:
opensuse-updater in openSUSE version 10.2
Description:
The issue allows local users to access arbitrary files via a symlink attack.
Recommendations:
For opensuse-updater in openSUSE version 10.2, consider restricting access to the opensuse-updater until a patch is available.
Fix
Link Following
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Opensuse-Updater