Local File Overwrite Vulnerability in GNU libtool by GNU Project
CVE-2004-0256

Currently unrated

Key Information:

Vendor: Gnu
Status: Libtool
Vendor: CVE Published:; 23 November 2004

Summary

GNU libtool versions prior to 1.5.2 are susceptible to a vulnerability that allows local users to exploit symlink attacks. By manipulating the directories used by libtool in the /tmp directory during the compile process, an attacker can overwrite arbitrary files, posing a significant risk to system integrity. Users of affected libtool versions should apply updates to prevent potential exploitation.

References

http://www.securityfocus.com/bid/9530

vdb-entryx_refsource_BID

http://www.osvdb.org/3795

vdb-entryx_refsource_OSVDB

http://www.geocrawler.com/mail/msg.php3?msg_id=3438808&li...

x_refsource_MISC

Timeline

Vulnerability published
Nov 23, 2004
Vulnerability Reserved
Mar 17, 2004