Vulnerabilities > CVE-2004-1895 - Unspecified vulnerability in Suse Linux 8.2/9.0
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
YaST Online Update (YOU) in SuSE 8.2 and 9.0 allows local users to overwrite arbitrary files via a symlink attack on you-$USER/cookies.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| OS | 3 |
References
- http://archives.neohapsis.com/archives/bugtraq/2004-04/0058.html
- http://marc.info/?l=bugtraq&m=108118395519164&w=2
- http://secunia.com/advisories/11300
- http://securitytracker.com/id?1009668
- http://www.osvdb.org/4985
- http://www.securityfocus.com/bid/10047
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15731