Oval Definition:oval:org.mitre.oval:def:11597
Revision Date:2013-04-29Version:12
Title:The configtest function in the Red Hat dhcpd init script for DHCP 3.0.1 in Red Hat Enterprise Linux (RHEL) 3 allows local users to overwrite arbitrary files via a symlink attack on an unspecified temporary file, related to the "dhcpd -t" command.
Description:The configtest function in the Red Hat dhcpd init script for DHCP 3.0.1 in Red Hat Enterprise Linux (RHEL) 3 allows local users to overwrite arbitrary files via a symlink attack on an unspecified temporary file, related to the "dhcpd -t" command.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2009-1893
Platform(s):CentOS Linux 3
Red Hat Enterprise Linux 3
Product(s):
Definition Synopsis
  • RHEL3 or CentOS3
  • The operating system installed on the system is Red Hat Enterprise Linux 3
  • OR CentOS Linux 3.x
  • AND Configuration section
  • dhclient is earlier than 7:3.0.1-10.2_EL3
  • OR dhcp is earlier than 7:3.0.1-10.2_EL3
  • OR dhcp-devel is earlier than 7:3.0.1-10.2_EL3
    • BACK