Privilege Escalation via Symlink Attack on PCP Log Directory

Privilege Escalation via Symlink Attack on PCP Log Directory

CVE-2001-0823 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

The pmpost program in Performance Co-Pilot (PCP) before 2.2.1-3 allows a local user to gain privileges via a symlink attack on the NOTICES file in the PCP log directory (PCP_LOG_DIR).

Learn more about our User Device Pen Test.