CVE-2008-0732
Apache Geronimo - Improper Link Resolution Before File Access via chown Operation
Title source: llmDescription
The init script for Apache Geronimo on SUSE Linux follows symlinks when performing a chown operation, which might allow local users to obtain access to unspecified files or directories.
References (2)
Core 2
Core References
Patch, Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/28838
Patch vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00003.html
Scores
EPSS
0.0076
EPSS Percentile
50.3%
Details
CWE
CWE-59
Status
published
Products (1)
apache/geronimo
Published
Feb 12, 2008
Tracked Since
Feb 18, 2026