Hardlink before 0.1.2 operates on full file system objects path names which can allow a local attacker to use this flaw to conduct symlink attacks.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
No history.
Information
Published : 2019-11-26 04:15
Updated : 2024-11-21 01:30
NVD link : CVE-2011-3632
Mitre link : CVE-2011-3632
CVE.ORG link : CVE-2011-3632
JSON object : View
Products Affected
hardlink_project
- hardlink
redhat
- enterprise_linux
debian
- debian_linux
CWE
CWE-59
Improper Link Resolution Before File Access ('Link Following')