Vulnerabilities > CVE-2004-2097 - Unspecified vulnerability in Suse Linux 9.0
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Multiple scripts on SuSE Linux 9.0 allow local users to overwrite arbitrary files via a symlink attack on (1) /tmp/fvwm-bug created by fvwm-bug, (2) /tmp/wmmenu created by wm-oldmenu2new, (3) /tmp/rates created by x11perfcomp, (4) /tmp/xf86debug.1.log created by xf86debug, (5) /tmp/.winpopup-new created by winpopup-send.sh, or (6) /tmp/initrd created by lvmcreate_initrd.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| OS | 1 |
References
- http://marc.info/?l=bugtraq&m=107461582413923&w=2
- http://marc.info/?l=bugtraq&m=107461582413923&w=2
- http://marc.info/?l=bugtraq&m=107478920006258&w=2
- http://marc.info/?l=bugtraq&m=107478920006258&w=2
- http://securitytracker.com/id?1008781
- http://securitytracker.com/id?1008781
- http://www.securityfocus.com/bid/9457
- http://www.securityfocus.com/bid/9457
- https://exchange.xforce.ibmcloud.com/vulnerabilities/14963
- https://exchange.xforce.ibmcloud.com/vulnerabilities/14963