2 matches found
CVE-2012-6348
CVE-2012-6348 affects Centrify Deployment Manager 2.1.0.283 (as distributed in Centrify Suite before 2012.5). Affected component is the use of insecure temporary files that can be targeted via symlink attacks: adcheckDMoutput and centrify.cmd.0. Local attackers can overwrite arbitrary files and, ...
CVE-2014-7298
CVE-2014-7298 affects Centrify Server Suite (2008–2014.1) and Centrify DirectControl (3.x–4.2.0) on Linux/Unix. The root cause is improperly protected setuid functionality in adsetgroups, allowing local users to read arbitrary files with root privileges. The documents do not provide exploitation ...