Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-2103

Overview

Vulnerability Score 1.2 1.2
CVE Id CVE-2012-2103
Last Modified 18 Apr 2013 11:21:11
Published 26 Aug 2012 05:55:01
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity HIGH
Authentication NONE

CVE-2012-2103

Summary

The qmailscan plugin for Munin 1.4.5 allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable names.

Vulnerable Systems

Application

  • Munin-monitoring Munin 1.4.5


References

MISC - https://bugzilla.redhat.com/show_bug.cgi?id=812889

XF - munin-unspec-symlink(74884)

BID - 53031

MLIST - [oss-security] 20120416 Re: CVE Request (minor) -- Two Munin graphing framework flaws

MLIST - [oss-security] 20120416 CVE Request (minor) -- Two Munin graphing framework flaws

SECUNIA - 48859

MISC - http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=668778

UBUNTU - USN-1622-1

SECUNIA - 51218


Last Updated: 27 May 2016 11:00:18