Symlink Attack Vulnerability in Oracle Auto Service Request

CVE-2013-1495 · MEDIUM Severity

AV:L/AC:M/AU:N/C:C/I:C/A:C

asr in Oracle Auto Service Request in Oracle Support Tools before 4.3.2 allows local users to modify arbitrary files via a symlink attack on a predictable filename in /tmp.

Learn more about our User Device Pen Test.