AMD fglrx-driver before 15.7 allows local users to gain privileges via a symlink attack.
The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Fglrx-driver | Amd | 14.4.2 (including) | 14.4.2 (including) |
Fglrx-driver | Ubuntu | upstream | * |
Fglrx-installer | Ubuntu | precise | * |
Fglrx-installer | Ubuntu | trusty | * |
Fglrx-installer | Ubuntu | vivid | * |
Fglrx-installer | Ubuntu | wily | * |