First published: Mon Dec 31 2001(Updated: )
script command in the util-linux package before 2.11n allows local users to overwrite arbitrary files by setting a hardlink from the typescript log file to any file on the system, then having root execute the script command.
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Andries Brouwer Util-linux | <=2.11m | |
Kernel Util-linux | <2.11n | |
Avaya Cvlan | ||
Avaya Integrated Management Suit | ||
Avaya Interactive Response | ||
Avaya Intuity Lx | ||
Avaya Message Networking | ||
Avaya Messaging Storage Server |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.