Local Privilege Escalation via Symbolic Link Attack in Tripwire 1.3.1, 2.2.1, and 2.3.0

Local Privilege Escalation via Symbolic Link Attack in Tripwire 1.3.1, 2.2.1, and 2.3.0

CVE-2001-0774 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

Tripwire 1.3.1, 2.2.1 and 2.3.0 allows local users to overwrite arbitrary files and possible gain privileges via a symbolic link attack on temporary files.

Learn more about our User Device Pen Test.