2 matches found
CVE-2004-0107
CVE-2004-0107 affects sysstat up to version 4.0.7. The vulnerability is local and arises from insecure handling of temporary files in the (1) post and (2) trigger scripts, enabling a local user to overwrite arbitrary files via symlink attacks. Root cause: inadequate protections around temporary f...
CVE-2004-0108
The CVE-2004-0108 entry concerns the isag utility (used for processing sysstat data) and describes a local privilege issue where a symlink attack on temporary files allows local users to overwrite arbitrary files. The vulnerability arises from insecure temporary file handling rather than remote e...