6.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
9.3%
Red Hat Cluster Project 2.x allows local users to modify or overwrite
arbitrary files via symlink attacks on files in /tmp, involving unspecified
components in Resource Group Manager (aka rgmanager) before 2.03.09-1,
gfs2-utils before 2.03.09-1, and CMAN - The Cluster Manager before
2.03.09-1 on Fedora 9.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 8.04 | noarch | redhat-cluster | < 2.20080227-0ubuntu1.3 | UNKNOWN |
ubuntu | 8.10 | noarch | redhat-cluster | < 2.20080826-0ubuntu1.3 | UNKNOWN |
ubuntu | 6.06 | noarch | redhat-cluster-suite | < 1.20060222-0ubuntu6.3 | UNKNOWN |