QwikSec

Security Database

CVE

CWE

Training

CVE-2012-1174

Published: Jul 12, 2012

Modified: Aug 6, 2024

PUBLISHED

Description

The rm_rf_children function in util.c in the systemd-logind login manager in systemd before 44, when logging out, allows local users to delete arbitrary files via a symlink attack on unspecified files, related to "particular records related with user session."

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://cgit.freedesktop.org/systemd/systemd/commit/?id=5ebff5337594d690b322078c512eb222d34aaa82

x_refsource_CONFIRM

https://bugzilla.redhat.com/show_bug.cgi?id=803358

x_refsource_MISC

FEDORA-2012-6456

vendor-advisory

x_refsource_FEDORA

[oss-security] 20120316 [Notification] CVE-2012-1174 systemd: TOCTOU race condition by removing user session

mailing-list

x_refsource_MLIST

vendor-advisory

x_refsource_MANDRIVA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.