CVE-2006-2221

2006-05-05T19:02:00
ID CVE-2006-2221
Type cve
Reporter cve@mitre.org
Modified 2018-10-18T16:38:00

Description

A third-party installer generation tool, possibly BitRock InstallBuilder, as used in products including Process-one ejabberd 1.1.1_1 and earlier, generates an installer that allows local users to cause a denial of service via a symlink attack on the bitrock_installer.log temporary file. NOTE: it is possible that this vulnerability is present in other products that use this installer. This vulnerability is addressed in the following product releases: Process-one, ejabberd, 1.1.1_2 BitRock, Install Builder, 3.7.0