The GlusterFS functionality in Red Hat Storage Management Console 2.0, Native Client, and Server 2.0 allows local users to overwrite arbitrary files via a symlink attack on multiple temporary files created by (1) tests/volume.rc, (2) extras/hook-scripts/S30samba-stop.sh, and possibly other vectors, different vulnerabilities than CVE-2012-4417.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Glusterfs | Gluster | - (including) | - (including) |
Storage_management_console | Redhat | 2.0 (including) | 2.0 (including) |
Storage_native_client | Redhat | - (including) | - (including) |
Storage_server | Redhat | 2.0 (including) | 2.0 (including) |