CVE-2007-3852 Information

Description

The init script (sysstat.in) in sysstat 5.1.2 up to 7.1.6 creates /tmp/sysstat.run insecurely which allows local users to execute arbitrary code.

Reference

http://osvdb.org/39709 http://secunia.com/advisories/26527 http://www.redhat.com/support/errata/RHSA-2011-1005.html http://www.securityfocus.com/bid/25380 https://bugs.gentoo.org/show_bug.cgi?id=188808 https://exchange.xforce.ibmcloud.com/vulnerabilities/36045