CVE-2012-4518 Information

Description

ibacm 1.0.7 creates files with world-writable permissions which allows local users to overwrite the ib_acm daemon log or ibacm.port file.

Reference

http://git.openfabrics.org/git?p=~shefty/ibacm.git;a=commit;h=d204fca2b6298d7799e918141ea8e11e7ad43cec http://rhn.redhat.com/errata/RHSA-2013-0509.html http://www.openwall.com/lists/oss-security/2012/10/11/6 http://www.openwall.com/lists/oss-security/2012/10/11/9 http://www.securityfocus.com/bid/55890