CVE-2012-5530
NONE
Published Nov 29, 201213y ago · Modified Jun 16, 20262w ago
Published Nov 29, 2012 13y ago
Last Modified Jun 16, 2026 2w ago
Description
The (1) pcmd and (2) pmlogger init scripts in Performance Co-Pilot (PCP) before 3.6.10 allow local users to overwrite arbitrary files via a symlink attack on a /var/tmp/##### temporary file.
Threat Intelligence
No active exploitation signals — not in CISA KEV and no EPSS score yet.
Exploit & Patch Status
No Known Exploit
No Patch Available
Weaknesses 1
CWE-264
Affected Products 17
| Vendor | Product | Version | Range |
|---|---|---|---|
| sgi | performance_co-pilot | * | ≤3.6.9 |
| sgi | performance_co-pilot | 2.1.1 | any |
| sgi | performance_co-pilot | 2.1.2 | any |
| sgi | performance_co-pilot | 2.1.3 | any |
| sgi | performance_co-pilot | 2.1.4 | any |
| sgi | performance_co-pilot | 2.1.5 | any |
| sgi | performance_co-pilot | 2.1.6 | any |
| sgi | performance_co-pilot | 2.1.7 | any |
| sgi | performance_co-pilot | 2.1.8 | any |
| sgi | performance_co-pilot | 2.1.9 | any |
| sgi | performance_co-pilot | 2.1.10 | any |
| sgi | performance_co-pilot | 2.1.11 | any |
| sgi | performance_co-pilot | 2.2 | any |
| sgi | performance_co-pilot | 3.6.4 | any |
| sgi | performance_co-pilot | 3.6.5 | any |
| sgi | performance_co-pilot | 3.6.6 | any |
| sgi | performance_co-pilot | 3.6.8 | any |
References 4
- lists.opensuse.org http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00024.html
- securityfocus.com http://www.securityfocus.com/bid/56656
- bugzilla.novell.com https://bugzilla.novell.com/show_bug.cgi?id=782967
- bugzilla.redhat.com https://bugzilla.redhat.com/show_bug.cgi?id=875842
Remediation
No remediation data recorded yet
Check vendor advisories and the NVD entry for patch availability.