Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
firehol in firehol 1.256 allows local users to overwrite arbitrary files via a symlink attack on (1) /tmp/.firehol-tmp-#####-*-* and (2) /tmp/firehol.conf temporary files. NOTE: the vendor disputes this vulnerability, stating that an attack "would require an attacker to create 1073741824*PID-RANGE symlinks.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
FireHOL 'firehol' 任意文件重写漏洞
Vulnerability Description
FireHOL是一个状态包过滤防火墙iptables的配置器。。 ** 有争议的**FireHOL 1.256版本中的firehol允许本地用户借助一个对(1)/tmp/.firehol-tmp-#####-*-*和(2)/tmp/firehol.conf临时文件的symlink攻击,重写任意文件。
CVSS Information
N/A
Vulnerability Type
N/A