>> Sun SNMP Management Agent Insecure Temporary File Vulnerability
Title : Sun SNMP Management Agent Insecure Temporary File Vulnerability VUPEN ID : VUPEN/ADV-2008-3516 CVE ID : CVE-2008-5746 CWE ID : CWE-377
Rated as : Low Risk
Remotely Exploitable : No Locally Exploitable : Yes Release Date : 2008-12-29
Technical Description
A vulnerability has been identified in Sun SNMP Management Agent, which could be exploited by local attackers to bypass security restrictions. This issue is caused by an error when handling temporary files, which could allow malicious users to conduct symlink attacks and overwrite arbitrary files with the privileges of the user invoking the vulnerable application.
