Performance Co-Pilot CVE-2012-5530 Multiple Insecure Temporary File Creation Vulnerabilities

Performance Co-Pilot is prone to multiple security vulnerabilities because it creates temporary files in an insecure manner.

An attacker with local access could potentially exploit these issues to perform symbolic-link attacks.

Successfully mounting a symlink attack may allow the attacker to corrupt sensitive files or gain access to sensitive information. Other attacks may also be possible.

Performance Co-Pilot 3.6.9 is vulnerable; prior versions may also be affected.


 

Privacy Statement
Copyright 2010, SecurityFocus