Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0946

Overview

Vulnerability Score 3.6 3.6
CVE Id CVE-2001-0946
Last Modified 05 Sep 2008 04:25:18
Published 04 Dec 2001 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2001-0946

Summary

apmscript in Apmd in Red Hat 7.2 "Enigma" allows local users to create or change the modification dates of arbitrary files via a symlink attack on the LOW_POWER temporary file, which could be used to cause a denial of service, e.g. by creating /etc/nologin and disabling logins.

Vulnerable Systems

Operating System

  • Redhat Linux 7.2


References

MISC - https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=56389

BUGTRAQ - 20011204 Symlink attack with apmd of RH 7.2

XF - apmd-apmscript-symlink(8268)

OSVDB - 5493


Last Updated: 27 May 2016 10:36:28