Arbitrary File Overwrite and Information Disclosure Vulnerability in Augeas Transform_Save Function

CVE-2012-0786 · LOW Severity

AV:L/AC:M/AU:N/C:P/I:P/A:N

The transform_save function in transform.c in Augeas before 1.0.0 allows local users to overwrite arbitrary files and obtain sensitive information via a symlink attack on a .augnew file.

Learn more about our User Device Pen Test.