World-Writable Permissions in GNU Automake Extraction Directory
CVE-2012-3386

Currently unrated

Key Information:

Vendor
Gnu
Status
Vendor
CVE Published:
7 August 2012

Summary

Prior to certain versions, GNU Automake's 'make distcheck' rule allows for world-writable permissions on the extraction directory. This misconfiguration introduces a race condition, enabling local users to execute arbitrary code. Users are advised to upgrade to secure versions to mitigate these risks and protect their systems from potential breaches.

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.