Vulnerability Details CVE-2012-5635
The GlusterFS functionality in Red Hat Storage Management Console 2.0, Native Client, and Server 2.0 allows local users to overwrite arbitrary files via a symlink attack on multiple temporary files created by (1) tests/volume.rc, (2) extras/hook-scripts/S30samba-stop.sh, and possibly other vectors, different vulnerabilities than CVE-2012-4417.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 19.1%
CVSS Severity
CVSS v2 Score 2.1
References
Products affected by CVE-2012-5635
-
cpe:2.3:a:gluster:glusterfs:-
-
cpe:2.3:a:redhat:storage_management_console:2.0
-
cpe:2.3:a:redhat:storage_native_client:-
-
cpe:2.3:a:redhat:storage_server:2.0