bin/rt in Request Tracker (RT) 3.8.x before 3.8.17 and 4.0.x before 4.0.13 allows local users to overwrite arbitrary files via a symlink attack on a temporary file with predictable name.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2013-08-23T16:00:00Z
Updated: 2024-09-17T00:55:59.676Z
Reserved: 2013-05-06T00:00:00Z
Link: CVE-2013-3368
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2013-08-23T16:55:07.170
Modified: 2013-08-26T14:25:51.197
Link: CVE-2013-3368
Redhat
No data.