Vulnerability Description
apmscript in Apmd in Red Hat 7.2 "Enigma" allows local users to create or change the modification dates of arbitrary files via a symlink attack on the LOW_POWER temporary file, which could be used to cause a denial of service, e.g. by creating /etc/nologin and disabling logins.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Redhat | Linux | 7.2 |
References
- http://marc.info/?l=bugtraq&m=100743394701962&w=2
- http://www.osvdb.org/5493
- https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=56389Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/8268
- http://marc.info/?l=bugtraq&m=100743394701962&w=2
- http://www.osvdb.org/5493
- https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=56389Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/8268
FAQ
What is CVE-2001-0946?
CVE-2001-0946 is a vulnerability with a CVSS score of 3.6 (LOW). apmscript in Apmd in Red Hat 7.2 "Enigma" allows local users to create or change the modification dates of arbitrary files via a symlink attack on the LOW_POWER temporary file, which could be used to ...
How severe is CVE-2001-0946?
CVE-2001-0946 has been rated LOW with a CVSS base score of 3.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2001-0946?
Check the references section above for vendor advisories and patch information. Affected products include: Redhat Linux.