Описание
The faxrunq and faxrunqd in the mgetty package allows local users to create or modify arbitrary files via a symlink attack which creates a symlink in from /var/spool/fax/outgoing/.last_run to the target file.
Отчет
This issue was fixed in the following products:
- Red Hat Linux 5.2 - RHSA-2000:059 (2000-09-07)
- Red Hat Linux 6.0 - RHSA-2000:059 (2000-09-07)
- Red Hat Linux 6.1 - RHSA-2000:059 (2000-09-07)
- Red Hat Linux 6.2 - RHSA-2000:059 (2000-09-07)
Дополнительная информация
https://bugzilla.redhat.com/show_bug.cgi?id=1616502security flaw
Связанные уязвимости
nvd
почти 25 лет назад
The faxrunq and faxrunqd in the mgetty package allows local users to create or modify arbitrary files via a symlink attack which creates a symlink in from /var/spool/fax/outgoing/.last_run to the target file.
github
больше 3 лет назад
The faxrunq and faxrunqd in the mgetty package allows local users to create or modify arbitrary files via a symlink attack which creates a symlink in from /var/spool/fax/outgoing/.last_run to the target file.