Vulnerabilities > CVE-2002-0210 - Symbolic Link vulnerability in Tolis Group BRU 17.0

CVSS 7.2 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

low complexity

tolis-group

exploit available

NVD

Published: 2002-05-16

Updated: 2008-09-11

Summary

setlicense for TOLIS Group Backup and Restore Utility (BRU) 17.0 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/brutest.$$ temporary file.

Vulnerable Configurations

Part	Description	Count
Application	Tolis_Group Tolis Group BRU 17.0	1

Exploit-Db

description	BRU 17.0 SetLicense Script Insecure Temporary File Symbolic Link Vulnerability. CVE-2002-0210. Local exploit for linux platform
id	EDB-ID:21247
last seen	2016-02-02
modified	2002-01-26
published	2002-01-26
reporter	Andrew Griffiths
source	https://www.exploit-db.com/download/21247/
title	BRU 17.0 SetLicense Script Insecure Temporary File Symbolic Link Vulnerability

Summary

Vulnerable Configurations

Exploit-Db

References