CVE-2012-2652

2012-08-07T16:55:03
ID CVE-2012-2652
Type cve
Reporter NVD
Modified 2014-03-05T23:37:56

Description

The bdrv_open function in Qemu 1.0 does not properly handle the failure of the mkstemp function, when in snapshot node, which allows local users to overwrite or read arbitrary files via a symlink attack on an unspecified temporary file.