CVE-2004-0108 Information

Description

The isag utility which processes sysstat data allows local users to overwrite arbitrary files via a symlink attack on temporary files a different vulnerability than CAN-2004-0107.

Reference

ftp://patches.sgi.com/support/free/security/advisories/20040302-01-U.asc http://www.debian.org/security/2004/dsa-460 http://www.redhat.com/support/errata/RHSA-2004-053.html http://www.securityfocus.com/bid/9844 https://exchange.xforce.ibmcloud.com/vulnerabilities/15437