Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The installation script studioexpressinstall for Teradata Studio Express 15.12.00.00 creates files in /tmp insecurely. A malicious local user could create a symlink in /tmp and possibly clobber system files or perhaps elevate privileges.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Teradata Studio Express 安全漏洞
Vulnerability Description
Teradata Studio Express是美国天睿(Teradata)公司的一套从Teradata和Aster数据库系统检索数据并支持在桌面上操作和存储数据的信息挖掘工具。 Teradata Studio Express 15.12.00.00版本中的安装脚本存在安全漏洞,该漏洞源于程序在/tmp目录下创建文件。本地攻击者可利用该漏洞创建符号链接,提升权限。
CVSS Information
N/A
Vulnerability Type
N/A