GNU ed before 0.2-18.1 allows local users to overwrite the files of other users via a symlink attack.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Ed | Gnu | 2.15 (including) | 2.15 (including) |
| Ed | Gnu | 2.16tr (including) | 2.16tr (including) |
| Ed | Gnu | 2.18 (including) | 2.18 (including) |
| Ed | Gnu | 2.18.0 (including) | 2.18.0 (including) |
| Red Hat Linux 5.2 | RedHat | * | |
| Red Hat Linux 6.0 | RedHat | * | |
| Red Hat Linux 6.1 | RedHat | * | |
| Red Hat Linux 6.2 | RedHat | * | |
| Red Hat Linux 7.0 | RedHat | * |
References
- http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000359
- http://www.debian.org/security/2000/20001129
- http://www.linux-mandrake.com/en/security/MDKSA-2000-076.php3
- http://www.osvdb.org/6491
- http://www.redhat.com/support/errata/RHSA-2000-123.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5723
- http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000359
- http://www.debian.org/security/2000/20001129
- http://www.linux-mandrake.com/en/security/MDKSA-2000-076.php3
- http://www.osvdb.org/6491
- http://www.redhat.com/support/errata/RHSA-2000-123.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5723