Privilege Escalation via Symlink Attack in ciborg gem 3.0.0

CVE-2014-5003 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:P/A:N

chef/travis-cookbooks/ci_environment/perlbrew/recipes/default.rb in the ciborg gem 3.0.0 for Ruby allows local users to write to arbitrary files and gain privileges via a symlink attack on /tmp/perlbrew-installer.

Learn more about our User Device Pen Test.