Vulnerability in Redhat Sysreport

CVE-2005-2104

sysreport before 1.3.7 allows local users to obtain sensitive information via a symlink attack on a temporary directory.

EPSS: 0.004 (34.4th percentile) — read the EPSS interpretation.

Affected products

secalert@redhat.com (Patch, x_refsource_SECUNIA, third-party-advisory)
secalert@redhat.com (x_refsource_OSVDB, vdb-entry)
secalert@redhat.com (x_refsource_SECUNIA, third-party-advisory)
secalert@redhat.com (x_refsource_OVAL, signature, vdb-entry)
secalert@redhat.com (x_refsource_FEDORA, vendor-advisory)
secalert@redhat.com (vdb-entry, x_refsource_XF)
secalert@redhat.com (x_refsource_CONFIRM, Vendor Advisory)
secalert@redhat.com (Patch, vdb-entry, x_refsource_SECTRACK, Vendor Advisory)
secalert@redhat.com (vdb-entry, x_refsource_BID)
secalert@redhat.com (x_refsource_REDHAT, vendor-advisory, Patch, Vendor Advisory)