A certain Red Hat script for sudo 1.7.2 on Red Hat... · CVE-2012-3440 · GitHub Advisory Database · GitHub

A certain Red Hat script for sudo 1.7.2 on Red Hat...

Moderate severity Unreviewed Published May 17, 2022 to the GitHub Advisory Database • Updated Feb 10, 2023

Package

No package listed— Suggest a package

Affected versions

Unknown

Patched versions

Unknown

Description

A certain Red Hat script for sudo 1.7.2 on Red Hat Enterprise Linux (RHEL) 5 allows local users to overwrite arbitrary files via a symlink attack on the /var/tmp/nsswitch.conf.bak temporary file.

References

Published by the National Vulnerability Database

Aug 8, 2012

Published to the GitHub Advisory Database May 17, 2022

Last updated Feb 10, 2023