The (1) pcmd and (2) pmlogger init scripts in Performance Co-Pilot (PCP) before 3.6.10 allow local users to overwrite arbitrary files via a symlink attack on a /var/tmp/##### temporary file.
2012-11-29T13:14:37.663
2025-04-11T00:51:21.963
Deferred
CVSSv2: 2.1 (LOW)
AV:L/AC:L/Au:N/C:N/I:P/A:N
3.9
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | sgi | performance_co-pilot | ≤ 3.6.9 | Yes |
| Application | sgi | performance_co-pilot | 2.1.1 | Yes |
| Application | sgi | performance_co-pilot | 2.1.2 | Yes |
| Application | sgi | performance_co-pilot | 2.1.3 | Yes |
| Application | sgi | performance_co-pilot | 2.1.4 | Yes |
| Application | sgi | performance_co-pilot | 2.1.5 | Yes |
| Application | sgi | performance_co-pilot | 2.1.6 | Yes |
| Application | sgi | performance_co-pilot | 2.1.7 | Yes |
| Application | sgi | performance_co-pilot | 2.1.8 | Yes |
| Application | sgi | performance_co-pilot | 2.1.9 | Yes |
| Application | sgi | performance_co-pilot | 2.1.10 | Yes |
| Application | sgi | performance_co-pilot | 2.1.11 | Yes |
| Application | sgi | performance_co-pilot | 2.2 | Yes |
| Application | sgi | performance_co-pilot | 3.6.4 | Yes |
| Application | sgi | performance_co-pilot | 3.6.5 | Yes |
| Application | sgi | performance_co-pilot | 3.6.6 | Yes |
| Application | sgi | performance_co-pilot | 3.6.8 | Yes |