Definition


New Search

bzip2 Arbitrary File Permission Modification Vulnerability

oval:org.mitre.oval:def:1154

Race condition in bzip2 1.0.2 and earlier allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed whose permissions are changed by bzip2 after the decompression is complete.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • Red Hat Enterprise Linux 3
Class:
vulnerability
Reference(s):
  • CVE-2005-0953
Product(s):
  • bzip2