CVE-2008-0732

2008-02-1220:00:00

mitre

www.cve.org

apache geronimo

suse linux

symlinks

local user access

unspecified files

AI Score

6.3

Confidence

Low

EPSS

Percentile

5.1%

JSON

The init script for Apache Geronimo on SUSE Linux follows symlinks when performing a chown operation, which might allow local users to obtain access to unspecified files or directories.

References

lists.opensuse.org/opensuse-security-announce/2008-02/msg00003.html

secunia.com/advisories/28838