CVE-2011-3204 - CERT CVE

  1. CVE-2011-3204

ID CVE-2011-3204
Sažetak hammerhead.cc in Hammerhead 2.1.4 allows local users to write to arbitrary files via a symlink attack on (1) /tmp/hammer.log (aka the HH_LOG file) or (2) the REPORT_LOG file.
Reference
CVSS
Base: 3.3
Impact: 4.9
Exploitability:3.4
Pristup
VektorSloženostAutentikacija
LOCAL MEDIUM NONE
Impact
PovjerljivostCjelovitostDostupnost
NONE PARTIAL PARTIAL
CVSS vektor AV:L/AC:M/Au:N/C:N/I:P/A:P
Zadnje važnije ažuriranje 23-09-2011 - 03:34
Objavljeno 06-09-2011 - 16:55