Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0610

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2001-0610
Last Modified 10 Sep 2008 03:08:30
Published 02 Aug 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2001-0610

Summary

kfm as included with KDE 1.x can allow a local attacker to gain additional privileges via a symlink attack in the kfm cache directory in /tmp.

Vulnerable Systems

Operating System

  • Kde 1.x

  • Suse Linux 7.0


References

XF - kfm-tmpfile-symlink(6428)

BUGTRAQ - 20010418 Insecure directory handling in KFM file manager


Last Updated: 27 May 2016 10:36:20