2 matches found
CVE-2012-5635
The CVE-2012-5635 entry concerns GlusterFS functionality in Red Hat Storage Management Console 2.0, Native Client, and Server 2.0. It is caused by a symlink-based attack that lets local users overwrite arbitrary files via multiple temporary files (e.g., tests/volume.rc, extras/hook-scripts/S30sam...
CVE-2013-4157
CVE-2013-4157 affects Red Hat Storage 2.0. The issue is a local symlink attack allowing local users to overwrite arbitrary files in /tmp via symlinks to (1) e, (2) local-bricks.list, (3) bricks.err, or (4) limits.conf. Root cause: insecure temporary file handling enabling arbitrary file overwrite...