Symlink Vulnerability in PackStack by Red Hat
CVE-2013-0261
Currently unrated
Summary
The PackStack installation contains a vulnerability where local users can exploit a symlink attack via temporary files located in the /tmp directory. Specifically, files within installer/basedefs.py and modules/ospluginutils.py can be overwritten due to predictable naming, leading to unauthorized file modifications. This flaw poses a significant risk as it can compromise system integrity by allowing an attacker to manipulate critical system files or configurations.
References
Timeline
Vulnerability published
Vulnerability Reserved