First published: Tue Feb 12 2008(Updated: )
The init script for Apache Geronimo on SUSE Linux follows symlinks when performing a chown operation, which might allow local users to obtain access to unspecified files or directories.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
SUSE Linux | ||
Apache Geronimo |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2008-0732 is considered a moderate security vulnerability due to its potential for local privilege escalation.
To fix CVE-2008-0732, ensure that the Apache Geronimo init script does not follow symlinks during chown operations by updating the script accordingly.
CVE-2008-0732 affects installations of Apache Geronimo on SUSE Linux systems.
No, CVE-2008-0732 requires local access to the system, thus it cannot be exploited remotely.
CVE-2008-0732 affects multiple versions of Apache Geronimo, specifically those running on SUSE Linux systems where the init script follows symlinks.