The lockwrap function in port-proxy/bin/openshift-port-proxy-cfg in Red Hat OpenShift Origin before 1.1 allows local users to overwrite arbitrary files via a symlink attack on a temporary file with a predictable name in /tmp.
CPE | Name | Operator | Version |
---|---|---|---|
openshift | le | 1.0 | |
openshift_origin | eq | 1.0.5 |