Vulnerability Details CVE-2008-4990
Enomaly Elastic Computing Platform (ECP), formerly Enomalism, before 2.1.1 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/enomalism2.pid temporary file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 4.9%
CVSS Severity
CVSS v2 Score 6.9
References
- http://groups.google.com/group/enomalism/msg/11c2f51b3734b0ab?dmode=source
- http://secunia.com/advisories/33724
- http://www.securityfocus.com/archive/1/500573/100/0/threaded
- http://www.securityfocus.com/bid/33544
- http://groups.google.com/group/enomalism/msg/11c2f51b3734b0ab?dmode=source
- http://secunia.com/advisories/33724
- http://www.securityfocus.com/archive/1/500573/100/0/threaded
- http://www.securityfocus.com/bid/33544
Products affected by CVE-2008-4990
-
cpe:2.3:a:enomaly:elastic_computing_platform:*