Arbitrary file deletion

2008-11-1816:00:00

PRIOn knowledge base

www.prio-n.com

6.4 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

tkman in tkman 2.2 allows local users to overwrite arbitrary files via a symlink attack on a (1) /tmp/tkman##### or (2) /tmp/ll temporary file.

CPENameOperatorVersion
tkmaneq2.2

CPE	Name	Operator	Version
	tkman	eq	2.2

References

lists.debian.org/debian-devel/2008/08/msg00285.html

www.securityfocus.com/bid/32407