VYPR

Policyd Weight

by Policyd Weight

CVEs (2)

  • CVE-2008-1569Mar 31, 2008
    risk 0.00cvss epss 0.00

    policyd-weight 0.1.14 beta-16 and earlier allows local users to modify or delete arbitrary files via a symlink attack on temporary files that are used when creating a socket.

  • CVE-2008-1570Mar 31, 2008
    risk 0.00cvss epss 0.00

    Race condition in the create_lockpath function in policyd-weight 0.1.14 beta-16 allows local users to modify or delete arbitrary files by creating the LOCKPATH directory, then modifying it after the symbolic link check occurs. NOTE: this is due to an incomplete fix for…