BMC Patrol Symbolic Link Vulnerability

In an advisory released by ISS on November 02, 1998, it was made aware that BMC's product, Patrol, was vulnerable to a possible root compromise. The vulnerability has to do with temporary files created by the world-executable Patrol Agent. Attackers can create symlinks in /tmp that Patrol Agent will follow (along with the root priviliges that, by default, Patrol Agent posesses). It may be possible to write arbitrary data to the target files to obtain root access.


Privacy Statement
Copyright 2010, SecurityFocus