Lucene search

K
ubuntucveUbuntu.comUB:CVE-2013-4260
HistorySep 16, 2013 - 12:00 a.m.

CVE-2013-4260

2013-09-1600:00:00
ubuntu.com
ubuntu.com
11

3.3 Low

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:N/I:P/A:P

0.0004 Low

EPSS

Percentile

5.1%

lib/ansible/playbook/init.py in Ansible 1.2.x before 1.2.3, when
playbook does not run due to an error, allows local users to overwrite
arbitrary files via a symlink attack on a retry file with a predictable
name in /var/tmp/ansible/.

Bugs

3.3 Low

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:N/I:P/A:P

0.0004 Low

EPSS

Percentile

5.1%