CVE-2012-4518
First published: Mon Oct 22 2012(Updated: )
ibacm 1.0.7 creates files with world-writable permissions, which allows local users to overwrite the ib_acm daemon log or ibacm.port file.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Openfabrics Ibacm | =1.0.7 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://git.openfabrics.org/git?p=~shefty/ibacm.git%3Ba=commit%3Bh=d204fca2b6298d7799e918141ea8e11e7ad43cec
- http://rhn.redhat.com/errata/RHSA-2013-0509.html
- http://www.openwall.com/lists/oss-security/2012/10/11/6
- http://www.openwall.com/lists/oss-security/2012/10/11/9
- http://www.securityfocus.com/bid/55890
- collector/nvd-index
- agent/references
- agent/weakness
- agent/tags
- agent/severity
- agent/author
- agent/description
- agent/type
- agent/event
- agent/softwarecombine
- vendor/openfabrics
- canonical/openfabrics ibacm
- version/openfabrics ibacm/1.0.7