Page 2 of 6 results (0.001 seconds)

CVSS: 5.5EPSS: 0%CPEs: 5EXPL: 0

Portage before 2.0.50-r3 allows local users to overwrite arbitrary files via a hard link attack on the lockfiles. • http://secunia.com/advisories/11305 http://security.gentoo.org/glsa/glsa-200404-01.xml http://www.securityfocus.com/bid/10060 https://exchange.xforce.ibmcloud.com/vulnerabilities/15754 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •