2.20080801

DATE	CVE	VULNERABILITY TITLE	RISK
2008-09-29	CVE-2008-4192	Link Following vulnerability in Redhat Cman 2.20080629/2.20080801 The pserver_shutdown function in fence_egenera in cman 2.20080629 and 2.20080801 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/eglog temporary file. local redhat CWE-59	6.9

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.