fence_manual, as used in fence 2.02.00-r1 and possibly cman, allows local users to modify arbitrary files via a symlink attack on the fence_manual.fifo temporary file.
References
Configurations
Configuration 1 (hide)
|
History
13 Feb 2023, 02:19
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Summary | fence_manual, as used in fence 2.02.00-r1 and possibly cman, allows local users to modify arbitrary files via a symlink attack on the fence_manual.fifo temporary file. |
02 Feb 2023, 17:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Summary | CVE-2008-4580 cman/fence: insecure temporary file usage in the manual fence agent |
Information
Published : 2008-10-15 20:08
Updated : 2023-12-10 10:51
NVD link : CVE-2008-4580
Mitre link : CVE-2008-4580
CVE.ORG link : CVE-2008-4580
JSON object : View
Products Affected
gentoo
- fence
- cman
CWE