Arbitrary File Overwrite Vulnerability in systemd-logind

CVE-2012-0871 · MEDIUM Severity

AV:L/AC:M/AU:N/C:N/I:C/A:C

The session_link_x11_socket function in login/logind-session.c in systemd-logind in systemd, possibly 37 and earlier, allows local users to create or overwrite arbitrary files via a symlink attack on the X11 user directory in /run/user/.

Learn more about our User Device Pen Test.