RSS   Podatności dla 'Utempter'   RSS

2004-08-18
 
CVE-2004-0233

 

 
Utempter allows device names that contain .. (dot dot) directory traversal sequences, which allows local users to overwrite arbitrary files via a symlink attack on device names in combination with an application that trusts the utmp or wtmp files.

 


Copyright 2020, cxsecurity.com

 

Back to Top