CVE-2010-2064

Severity CVSS v4.0:
Pending analysis
Type:
CWE-59 Link Following
Publication date:
29/10/2019
Last modified:
21/11/2024

Description

rpcbind 0.2.0 allows local users to write to arbitrary files or gain privileges via a symlink attack on (1) /tmp/portmap.xdr and (2) /tmp/rpcbind.xdr.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:rpcbind_project:rpcbind:0.2.0:*:*:*:*:*:*:*