Sysstat : Security Vulnerabilities, CVEs,
The init script (sysstat.in) in sysstat 5.1.2 up to 7.1.6 creates /tmp/sysstat.run insecurely, which allows local users to execute arbitrary code.
Max CVSS
4.4
EPSS Score
0.04%
Published
2007-08-14
Updated
2023-02-13
The isag utility, which processes sysstat data, allows local users to overwrite arbitrary files via a symlink attack on temporary files, a different vulnerability than CAN-2004-0107.
Max CVSS
4.6
EPSS Score
0.04%
Published
2004-04-15
Updated
2017-10-10
The (1) post and (2) trigger scripts in sysstat 4.0.7 and earlier allow local users to overwrite arbitrary files via symlink attacks on temporary files, a different vulnerability than CVE-2004-0108.
Max CVSS
4.6
EPSS Score
0.04%
Published
2004-04-15
Updated
2017-10-11
3 vulnerabilities found