Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple scripts on SuSE Linux 9.0 allow local users to overwrite arbitrary files via a symlink attack on (1) /tmp/fvwm-bug created by fvwm-bug, (2) /tmp/wmmenu created by wm-oldmenu2new, (3) /tmp/rates created by x11perfcomp, (4) /tmp/xf86debug.1.log created by xf86debug, (5) /tmp/.winpopup-new created by winpopup-send.sh, or (6) /tmp/initrd created by lvmcreate_initrd.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
SuSE多个脚本不安全暂时文件处理符号连接漏洞
Vulnerability Description
SuSE Linux 9.0版本中的多个脚本存在漏洞。本地用户可以借助符号连接攻击覆盖任意文件,该符号连接攻击存在于:(1)由fvwm-bug创建的/tmp/fvwm-bug,(2)由oldmenu2new创建的/tmp/wmmenu,(3)由x11perfcomp创建的/tmp/xf86debug.1.log,(4)由xf86debug创建的/tmp/xf86debug.1.log,(5)由winpopup-send.sh创建的/tmp/.winpopup-new,或(6)由lvmcreate_init
CVSS Information
N/A
Vulnerability Type
N/A