CVE-2013-0261

Currently unrated

Key Information:

Vendor: Openstack
Status: Essex; Folsom
Vendor: CVE Published:; 8 March 2013

Summary

(1) installer/basedefs.py and (2) modules/ospluginutils.py in PackStack allows local users to overwrite arbitrary files via a symlink attack on a temporary file with a predictable name in /tmp.

References

http://rhn.redhat.com/errata/RHSA-2013-0595.html

vendor-advisoryx_refsource_REDHAT

https://bugzilla.redhat.com/show_bug.cgi?id=908101

x_refsource_MISC

Timeline

Vulnerability published
Mar 8, 2013
Vulnerability Reserved
Dec 6, 2012