Unrated severityNVD Advisory· Published Nov 22, 2010· Updated Apr 29, 2026
CVE-2010-4173
CVE-2010-4173
Description
The default configuration of libsdp.conf in libsdp 1.1.104 and earlier creates log files in /tmp, which allows local users to overwrite arbitrary files via a (1) symlink or (2) hard link attack on the libsdp.log.##### temporary file.
Affected products
6cpe:2.3:a:openfabrics:libsdp:*:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:openfabrics:libsdp:*:*:*:*:*:*:*:*range: <=1.1.104
- cpe:2.3:a:openfabrics:libsdp:1.1.100:*:*:*:*:*:*:*
- cpe:2.3:a:openfabrics:libsdp:1.1.101:*:*:*:*:*:*:*
- cpe:2.3:a:openfabrics:libsdp:1.1.102:*:*:*:*:*:*:*
- cpe:2.3:a:openfabrics:libsdp:1.1.103:*:*:*:*:*:*:*
- cpe:2.3:a:openfabrics:libsdp:1.1.99:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4News mentions
0No linked articles in our index yet.