The AcquireDaemonLock function in ipcdUnix.cpp in Sun Innotek VirtualBox before 2.0.6 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/.vbox-$USER-ipc/lock temporary file.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2008-11-27T00:00:00

Updated: 2024-08-07T10:49:12.440Z

Reserved: 2008-11-26T00:00:00

Link: CVE-2008-5256

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2008-11-27T00:30:00.297

Modified: 2024-11-21T00:53:40.267

Link: CVE-2008-5256

cve-icon Redhat

No data.