Computer Security
[EN] no-pyccku

EMC Avamar weak permissions
updated since 02.01.2013
SecurityVulns ID:12806
Threat Level:
Description:Cache files are world writable.
CVE:CVE-2012-2291 (EMC Avamar Client 4.x, 5.x, and 6.x on HP-UX and Mac OS X, and the EMC Avamar plugin 4.x, 5.x, and 6.x for Oracle, uses world-writable permissions for cache directories, which allows local users to gain privileges via an unspecified symlink attack.)
Original documentdocumentEMC, Re: EMC Avamar: World writable cache files (27.01.2013)
 documentfulldisclosure_(at), EMC Avamar: World writable cache files (02.01.2013)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod