3 matches found
CVE-2008-5139
updatejail in jailer 0.4 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/.updatejail temporary file...
Arbitrary file deletion
updatejail in jailer 0.4 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/.updatejail temporary file...
CVE-2008-5139
CVE-2008-5139 affects the jailer component (updatejail) of the chroot maintenance tool Jailer. The vulnerability arises from generation of a predictable temporary filename, allowing local users to perform a symlink attack on a file like /tmp/#####.updatejail and overwrite arbitrary files, potenti...