CVE-2013-0261 HIGH

CVE-2013-0261: Packstack: packstack: arbitrary file overwrite via symlink attack

Vendor Red Hat
Product Red Hat Enterprise Linux OpenStack Platform 5 (Icehouse)
Weakness CWE-59
Published March 8, 2013
Last update April 30, 2026

CVSS base score

8.8/10
Attack vector Local
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

What the vulnerability does

01Description

A flaw was found in PackStack. A local user could exploit a symlink attack on a temporary file with a predictable name in the `/tmp` directory. This vulnerability allows the local user to overwrite arbitrary files on the system, potentially leading to system compromise or data corruption.

Key dates

02Disclosure timeline

March 8, 2013 CVE published
April 30, 2026 Record updated

Related vulnerabilities

04Related CVE