CVE-2013-2561

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2013-2561

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2013-2561.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2013-2561

Downstream

DEBIAN-CVE-2013-2561

RHSA-2013:1661

UBUNTU-CVE-2013-2561

Published

2013-11-23T18:55:04Z

Modified

2025-08-09T20:01:28Z

Summary

[none]

Details

OpenFabrics ibutils 1.5.7 allows local users to overwrite arbitrary files via a symlink attack on (1) ibdiagnet.db, (2) ibdiagnet.fdbs, (3) ibdiagnet_ibis.log, (4) ibdiagnet.log, (5) ibdiagnet.lst, (6) ibdiagnet.mcfdbs, (7) ibdiagnet.pkey, (8) ibdiagnet.psl, (9) ibdiagnet.slvl, or (10) ibdiagnet.sm in /tmp/.

References

http://rhn.redhat.com/errata/RHSA-2013-1661.html
http://seclists.org/fulldisclosure/2013/Mar/87
https://bugzilla.redhat.com/show_bug.cgi?id=927430
http://www.openwall.com/lists/oss-security/2013/03/19/8
http://www.openwall.com/lists/oss-security/2013/03/26/1
http://www.openwall.com/lists/oss-security/2013/03/26/11
http://www.openwall.com/lists/oss-security/2013/03/26/4
http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html
http://www.securityfocus.com/bid/58335

CVE-2013-2561

Affected packages