Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:10698
HistoryJan 15, 2019 - 8:50 a.m.

Arbitrary File Overwrite

2019-01-1508:50:51
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
5

0.0004 Low

EPSS

Percentile

5.1%

JSON

sanlock is vulnerable to arbitrary file overwrite attacks. The vulnerability exists as the setup_logging function in log.h in SANLock uses world-writable permissions for /var/log/sanlock.log, which allows local users to overwrite the file content or bypass intended disk-quota restrictions via standard filesystem write operations.

Related

cvelist 1
debiancve 1
nvd 1
ubuntucve 1
prion 1
cve 1
redhat 1
veracode 1
cvelist
cvelist
CVE-2012-5638
2012-12-20 11:00:00
debiancve
debiancve
CVE-2012-5638
2012-12-20 12:02:18
nvd
nvd
CVE-2012-5638
2012-12-20 12:02:18
ubuntucve
ubuntucve
CVE-2012-5638
2012-12-20 00:00:00
prion
prion
Design/Logic Flaw
2012-12-20 12:02:00
cve
cve
CVE-2012-5638
2012-12-20 12:02:18
redhat
redhat
(RHSA-2013:0691) Important: Red Hat Storage 2.0 security, bug fix, and enhancement update #4
2013-03-28 00:00:00
veracode
veracode
Symlink Attack
2019-05-02 04:44:26

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for VERACODE:10698
cvelist1debiancve1nvd1ubuntucve1prion1cve1redhat1veracode1