CVE-2004-0233

2004-08-18T00:00:00
ID CVE-2004-0233
Type cve
Reporter NVD
Modified 2017-10-10T21:29:24

Description

Utempter allows device names that contain .. (dot dot) directory traversal sequences, which allows local users to overwrite arbitrary files via a symlink attack on device names in combination with an application that trusts the utmp or wtmp files.