Vmware符号链接漏洞

漏洞信息详情

Vmware符号链接漏洞

• CNNVD编号：CNNVD-200001-040
• 危害等级： 低危
  
  
• CVE编号：
  CVE-2000-0090
  
• 漏洞类型：
  
  
  其他
  
• 发布时间：
  
  2000-01-17
  
• 威胁类型：
  
  
  本地
  
• 更新时间：
  
  2005-05-02
  
• 厂        商：
  
  vmware
• 漏洞来源：
  This vulnerability…

VMWare 1.1.2版本存在漏洞。本地用户可以借助符号链接攻击引发拒绝服务。

Currently the SecurityFocus staff are not aware of any vendor supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: vuldb@securityfocus.com.
VMWare does however let allow you to set the location of your temporary directory for it’s file creation via the $TMPDIR environment variable. Therefore you may wish to set your $TMPDIR variable to something with more stringent permissions, such as a sub-directory off your own home directory ($HOME).

来源: BID
名称: 943
链接:http://www.securityfocus.com/bid/943

来源: OSVDB
名称: 1205
链接:http://www.osvdb.org/1205