vendor:
utempter
by:
Unknown
N/A
CVSS
N/A
Input validation error, failure to validate buffer boundaries
Unknown
CWE
Product Name: utempter
Affected Version From: Unknown
Affected Version To: Unknown
Patch Exists: Unknown
Related CWE:
CPE: Unknown
Platforms Tested: Unknown
Unknown
utempter local vulnerabilities
The first issue is an input validation error that allows for symbolic link attacks, potentially leading to corruption of system files. The second issue is a failure to properly validate buffer boundaries, which may result in crashes and potentially allow for arbitrary code execution.
Mitigation:
Unknown