Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-3345

Overview

Vulnerability Score 5.6 5.6
CVE Id CVE-2012-3345
Last Modified 15 Jun 2012 12:00:00
Published 15 Jun 2012 10:55:02
Confidentiality Impact NONE NONE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity HIGH
Authentication NONE

CVE-2012-3345

Summary

ioquake3 before r2253 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/ioq3.pid temporary file.

Vulnerable Systems

Application

  • Ioquake3 Engine R2252


References

MLIST - [oss-security] 20120614 CVE-2012-3345: symlink attack in ioquake3 >= r1773, < r2253


Last Updated: 27 May 2016 10:58:24