World-Writable Permissions in GNU Automake Extraction Directory
CVE-2012-3386
Currently unrated
Summary
Prior to certain versions, GNU Automake's 'make distcheck' rule allows for world-writable permissions on the extraction directory. This misconfiguration introduces a race condition, enabling local users to execute arbitrary code. Users are advised to upgrade to secure versions to mitigate these risks and protect their systems from potential breaches.
References
Timeline
Vulnerability published
Vulnerability Reserved