CVE-2011-3602
EPSS 0.23%發布日:2014/4/27修改日:2026/4/28
描述
Directory traversal vulnerability in device-linux.c in the router advertisement daemon (radvd) before 1.8.2 allows local users to overwrite arbitrary files, and remote attackers to overwrite certain files, via a .. (dot dot) in an interface name. NOTE: this can be leveraged with a symlink to overwrite arbitrary files.
受影響套件(1)
- Debian/radvdfrom 0, < 1:1.8-1.1