CVE-2012-5660
published 2013-03-12CVE-2012-5660: abrt-action-install-debuginfo in Automatic Bug Reporting Tool (ABRT) 2.0.9 and earlier allows local users to set world-writable permissions for arbitrary files…
medium6.9CVSS 3.1
AVLACMAuNCCICAC
abrt-action-install-debuginfo in Automatic Bug Reporting Tool (ABRT) 2.0.9 and earlier allows local users to set world-writable permissions for arbitrary files and possibly gain privileges via a symlink attack on "the directories used to store information about crashes."
Affected
12 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| redhat | automatic_bug_reporting_tool | <= 2.0.9 | — |
| redhat | automatic_bug_reporting_tool | — | — |
| redhat | automatic_bug_reporting_tool | — | — |
| redhat | automatic_bug_reporting_tool | — | — |
| redhat | automatic_bug_reporting_tool | — | — |
| redhat | automatic_bug_reporting_tool | — | — |
| redhat | automatic_bug_reporting_tool | — | — |
| redhat | automatic_bug_reporting_tool | — | — |
| redhat | automatic_bug_reporting_tool | — | — |
| redhat | automatic_bug_reporting_tool | — | — |
| redhat | automatic_bug_reporting_tool | — | — |
| redhat | automatic_bug_reporting_tool | — | — |