{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2012-12-14T00:00:00.000Z", "descriptions": [{"lang": "en", "value": "IBM Advanced Settings Utility (ASU) through 3.62 and 3.70 through 9.21 and Bootable Media Creator (BoMC) through 2.30 and 3.00 through 9.21 on Linux allow local users to overwrite arbitrary files via a symlink attack on a (1) temporary file or (2) log file."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-08-28T12:57:01.000Z", "orgId": "9a959283-ebb5-44b6-b705-dcc2bbced522", "shortName": "ibm"}, "references": [{"name": "ibm-asu-symlink(78044)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/78044"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5092090"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "psirt@us.ibm.com", "ID": "CVE-2012-3329", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "IBM Advanced Settings Utility (ASU) through 3.62 and 3.70 through 9.21 and Bootable Media Creator (BoMC) through 2.30 and 3.00 through 9.21 on Linux allow local users to overwrite arbitrary files via a symlink attack on a (1) temporary file or (2) log file."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "ibm-asu-symlink(78044)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/78044"}, {"name": "http://www.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5092090", "refsource": "CONFIRM", "url": "http://www.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5092090"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T20:05:10.835Z"}, "title": "CVE Program Container", "references": [{"name": "ibm-asu-symlink(78044)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/78044"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5092090"}]}]}, "cveMetadata": {"assignerOrgId": "9a959283-ebb5-44b6-b705-dcc2bbced522", "assignerShortName": "ibm", "cveId": "CVE-2012-3329", "datePublished": "2012-12-19T11:00:00.000Z", "dateReserved": "2012-06-07T00:00:00.000Z", "dateUpdated": "2024-08-06T20:05:10.835Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ibm:advanced_settings_utility:3.62:*:*:*:*:*:*:*", "matchCriteriaId": "EE696B69-3E8A-4E7B-839B-08DFF9461323", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:advanced_settings_utility:3.70:*:*:*:*:*:*:*", "matchCriteriaId": "2272FB68-F4B7-45D2-BFDE-B4E271F6E1F7", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:advanced_settings_utility:9.21:*:*:*:*:*:*:*", "matchCriteriaId": "96A1D22C-A85E-4785-8BEA-9F15F54EBC1A", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:bootable_media_creator:2.30:*:*:*:*:*:*:*", "matchCriteriaId": "EB8AE05D-F143-41C9-8D16-0A6A91404954", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:bootable_media_creator:3.00:*:*:*:*:*:*:*", "matchCriteriaId": "49538924-3A36-4ECC-9E7D-435F926F8E87", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:bootable_media_creator:9.21:*:*:*:*:*:*:*", "matchCriteriaId": "27D9B049-53DD-42E8-98E0-68588D58FFFE", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "155AD4FB-E527-4103-BCEF-801B653DEA37", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "IBM Advanced Settings Utility (ASU) through 3.62 and 3.70 through 9.21 and Bootable Media Creator (BoMC) through 2.30 and 3.00 through 9.21 on Linux allow local users to overwrite arbitrary files via a symlink attack on a (1) temporary file or (2) log file."}, {"lang": "es", "value": "IBM Advanced Settings Utility (ASU) hasta la v3.62 y v3.70 hasta la v9.21 y Bootable Media Creator (BOMC) hasta la v2.30 y v3.00 hasta la v9.21 en Linux permiten a los usuarios locales sobreescribir ficheros de su elecci\u00f3n mediante un ataque de enlaces simb\u00f3licos en un archivo (1) temporal o (2) el archivo de registro.\r\n"}], "id": "CVE-2012-3329", "lastModified": "2025-04-11T00:51:21.963", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "LOW", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 3.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:M/Au:N/C:N/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 3.4, "impactScore": 4.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2012-12-19T11:55:54.127", "references": [{"source": "psirt@us.ibm.com", "tags": ["Vendor Advisory"], "url": "http://www.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5092090"}, {"source": "psirt@us.ibm.com", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/78044"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5092090"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/78044"}], "sourceIdentifier": "psirt@us.ibm.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-59"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}

{}