Description
The (1) post and (2) trigger scripts in sysstat 4.0.7 and earlier allow local users to overwrite arbitrary files via symlink attacks on temporary files, a different vulnerability than CVE-2004-0108.
Affected products
- RedHat / sysstat4.0.7-3 – 4.0.7-3
- sgi / propack2.3 – 2.3
- sgi / propack2.4 – 2.4
- sysstat / sysstat4.0.7 – 4.0.7
- sysstat / sysstat4.1.1 – 4.1.1
- sysstat / sysstat4.1.2 – 4.1.2
- sysstat / sysstat4.1.3 – 4.1.3
- sysstat / sysstat4.1.4 – 4.1.4
- sysstat / sysstat4.1.5 – 4.1.5
- sysstat / sysstat4.1.6 – 4.1.6
- sysstat / sysstat4.1.7 – 4.1.7
- sysstat / sysstat5.0.1 – 5.0.1
References
- MISChttp://www.redhat.com/support/errata/RHSA-2004-093.html
- VENDOR_ADVISORYftp://patches.sgi.com/support/free/security/advisories/20040302-01-U.asc
- MISChttp://www.ciac.org/ciac/bulletins/o-097.shtml
- MISChttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10737
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/15428
- MISChttp://www.securityfocus.com/bid/9838
- MISChttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A862
- MISChttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A849
- MISChttp://www.redhat.com/support/errata/RHSA-2004-053.html
- MISChttp://www.osvdb.org/6884