Symlink Attack Vulnerability in AllCommerce with Debugging Enabled in EnGarde Secure Linux 1.0.1

Symlink Attack Vulnerability in AllCommerce with Debugging Enabled in EnGarde Secure Linux 1.0.1

CVE-2001-1146 · LOW Severity

AV:L/AC:H/AU:N/C:N/I:P/A:N

AllCommerce with debugging enabled in EnGarde Secure Linux 1.0.1 creates temporary files with predictable names, which allows local users to modify files via a symlink attack.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.