Computer Security
[EN] securityvulns.ru no-pyccku


EMC Avamar weak permissions
updated since 02.01.2013
Published:27.01.2013
Source:
SecurityVulns ID:12806
Type:local
Threat Level:
5/10
Description:Cache files are world writable.
CVE:CVE-2012-2291 (EMC Avamar Client 4.x, 5.x, and 6.x on HP-UX and Mac OS X, and the EMC Avamar plugin 4.x, 5.x, and 6.x for Oracle, uses world-writable permissions for cache directories, which allows local users to gain privileges via an unspecified symlink attack.)
Original documentdocumentEMC, Re: EMC Avamar: World writable cache files (27.01.2013)
 documentfulldisclosure_(at)_greyhat.dk, EMC Avamar: World writable cache files (02.01.2013)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod