Local File Manipulation Vulnerability in System Security Services Daemon
CVE-2013-0219
Currently unrated
What is CVE-2013-0219?
The System Security Services Daemon (SSSD) versions prior to 1.9.4 are vulnerable to a local file manipulation exploit that allows local users to create, modify, or delete arbitrary files. This is achieved through a symlink attack against another user's home directory. The vulnerability arises during operations such as creating, copying, or removing user home directory trees, posing significant risks to data integrity and system security.