Vulnerabilities > CVE-2002-0296 - Symbolic Link vulnerability in Tarantella Enterprise 3

Attack vector

LOCAL

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

local

high complexity

exploit available

NVD

Published: 2002-05-31

Updated: 2017-07-11

Summary

The installation of Tarantella Enterprise 3 allows local users to overwrite arbitrary files via a symlink attack on the "spinning" temporary file.

Part	Description	Count
Application	Tarantella Tarantella Tarantella Enterprise 3.0 Tarantella Tarantella Enterprise 3.01 Tarantella Tarantella Enterprise 3.10 Tarantella Tarantella Enterprise 3.11 Tarantella Tarantella Enterprise 3.20	5

description	Tarantella Enterprise 3 Symbolic Link Vulnerability. CVE-2002-0296 . Local exploit for unix platform
id	EDB-ID:21290
last seen	2016-02-02
modified	2002-02-19
published	2002-02-19
reporter	Larry W. Cashdollar
source	https://www.exploit-db.com/download/21290/
title	Tarantella Enterprise 3 Symbolic Link Vulnerability