Vulnerability Description
IBM Advanced Settings Utility (ASU) through 3.62 and 3.70 through 9.21 and Bootable Media Creator (BoMC) through 2.30 and 3.00 through 9.21 on Linux allow local users to overwrite arbitrary files via a symlink attack on a (1) temporary file or (2) log file.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Advanced Settings Utility | 3.62 |
| Ibm | Bootable Media Creator | 2.30 |
| Linux | Linux Kernel | All versions |
Related Weaknesses (CWE)
References
- http://www.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5092090Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/78044
- http://www.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5092090Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/78044
FAQ
What is CVE-2012-3329?
CVE-2012-3329 is a vulnerability with a CVSS score of 3.3 (LOW). IBM Advanced Settings Utility (ASU) through 3.62 and 3.70 through 9.21 and Bootable Media Creator (BoMC) through 2.30 and 3.00 through 9.21 on Linux allow local users to overwrite arbitrary files via ...
How severe is CVE-2012-3329?
CVE-2012-3329 has been rated LOW with a CVSS base score of 3.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2012-3329?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Advanced Settings Utility, Ibm Bootable Media Creator, Linux Linux Kernel.