The maketemp.pl script in Usermin 1.070 and 1.080 allows local users to overwrite arbitrary files at install time via a symlink attack on the /tmp/.usermin directory.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2004-09-24T04:00:00
Updated: 2024-08-08T00:24:25.802Z
Reserved: 2004-06-14T00:00:00
Link: CVE-2004-0559
Vulnrichment
No data.
NVD
Status : Modified
Published: 2004-10-20T04:00:00.000
Modified: 2024-11-20T23:48:51.420
Link: CVE-2004-0559
Redhat
No data.