Security Advisory

CVE-2013-4260

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2013-09-16 19:00:00

Last updated 2024-08-06 16:38:01

Assigner redhat

State PUBLISHED

Description

lib/ansible/playbook/__init__.py in Ansible 1.2.x before 1.2.3, when playbook does not run due to an error, allows local users to overwrite arbitrary files via a symlink attack on a retry file with a predictable name in /var/tmp/ansible/.

← Browse all CVEs View on cve.org ↗