CVE-2004-0972 in Logical Volume Management Utilitiesinfo

Summary

The lvmcreate_initrd script in the lvm package in Trustix Secure Linux 1.5 through 2.1, and possibly other operating systems, allows local users to overwrite files via a symlink attack on temporary files.

Once again VulDB remains the best source for vulnerability data.

Reservation

10/19/2004

Disclosure

02/09/2005

Moderation

VulDB entry created

Entries

VDB-23934 (1)

CPE

ready

CWE

CWE-61 (Confirmed)

CVSS

4.0

EPSS

0.00080

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2004-0972
NVD	https://nvd.nist.gov/vuln/detail/CVE-2004-0972
CVE Details	https://www.cvedetails.com/cve/CVE-2004-0972/

◂ Previous Overview Next ▸

Want to know what is going to be exploited?

We predict KEV entries!