Lucene search
HistoryNov 29, 2012 - 1:14 p.m.
CVE-2012-5530
nvd
cve-2012-5530
performance co-pilot
pcp
symlink attack
security vulnerability
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
6.1 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
The (1) pcmd and (2) pmlogger init scripts in Performance Co-Pilot (PCP) before 3.6.10 allow local users to overwrite arbitrary files via a symlink attack on a /var/tmp/##### temporary file.
Affected configurations
Node
sgiperformance_co-pilotRange≤3.6.9
ORsgiperformance_co-pilotMatch2.1.1
ORsgiperformance_co-pilotMatch2.1.2
ORsgiperformance_co-pilotMatch2.1.3
ORsgiperformance_co-pilotMatch2.1.4
ORsgiperformance_co-pilotMatch2.1.5
ORsgiperformance_co-pilotMatch2.1.6
ORsgiperformance_co-pilotMatch2.1.7
ORsgiperformance_co-pilotMatch2.1.8
ORsgiperformance_co-pilotMatch2.1.9
ORsgiperformance_co-pilotMatch2.1.10
ORsgiperformance_co-pilotMatch2.1.11
ORsgiperformance_co-pilotMatch2.2
ORsgiperformance_co-pilotMatch3.6.4
ORsgiperformance_co-pilotMatch3.6.5
ORsgiperformance_co-pilotMatch3.6.6
ORsgiperformance_co-pilotMatch3.6.8
Related
nessus
nessus
Fedora 17 : pcp-3.6.10-1.fc17 (2012-18686)
2012-11-23 00:00:00
Fedora 16 : pcp-3.6.10-1.fc16 (2012-18654)
2012-11-23 00:00:00
Fedora 18 : pcp-3.6.10-1.fc18 (2012-18587)
2012-11-26 00:00:00
ubuntucve
ubuntucve
CVE-2012-5530
2012-11-29 00:00:00
cvelist
cvelist
CVE-2012-5530
2012-11-29 11:00:00
nvd
nvd
CVE-2012-5530
2012-11-29 13:14:37
debiancve
debiancve
CVE-2012-5530
2012-11-29 13:14:37
fedora
fedora
[SECURITY] Fedora 18 Update: pcp-3.6.10-1.fc18
2012-11-23 07:15:25
[SECURITY] Fedora 17 Update: pcp-3.6.10-1.fc17
2012-11-23 02:54:03
[SECURITY] Fedora 16 Update: pcp-3.6.10-1.fc16
2012-11-23 03:14:27
prion
prion
Arbitrary file deletion
2012-11-29 13:14:00
openvas
openvas
Fedora Update for pcp FEDORA-2012-18686
2012-11-23 00:00:00
SUSE: Security Advisory (SUSE-SU-2013:0190-1)
2021-06-09 00:00:00
Fedora Update for pcp FEDORA-2012-18654
2012-11-23 00:00:00
suse
suse
Security update for pcp (important)
2013-01-23 20:04:43
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
6.1 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
Related for CVE-2012-5530