Local Privilege Escalation in Apache Subversion 1.8.0 to 1.8.2 by Symlink Attack

CVE-2013-4262

Summary

A vulnerability exists in Apache Subversion versions 1.8.0 through 1.8.2, where improper handling of the --pidfile option in svnwcsub.py while running in foreground mode can allow local users to perform a symlink attack on the PID file. This exploitation can potentially lead to privilege escalation, compromising the integrity of the system and allowing attackers to gain unauthorized access to system resources.

References