Symlink Attack Vulnerability in YaST Online Update (YOU) in SuSE 8.2 and 9.0

Symlink Attack Vulnerability in YaST Online Update (YOU) in SuSE 8.2 and 9.0

CVE-2004-1895 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:P/A:N

YaST Online Update (YOU) in SuSE 8.2 and 9.0 allows local users to overwrite arbitrary files via a symlink attack on you-$USER/cookies.

Learn more about our Cis Benchmark Audit For Suse Linux Enterprise Server.