CVE-2012-0786

Published: Nov 23, 2013Modified: Apr 29, 2026

3.3

Vector

AV:L/AC:M/Au:N/C:P/I:P/A:N

Exploitability: 3.4 / Impact: 4.9

Source: NVD

Description

The transform_save function in transform.c in Augeas before 1.0.0 allows local users to overwrite arbitrary files and obtain sensitive information via a symlink attack on a .augnew file.

Affected (37)

Products: Augeas: Augeas

Augeas

1 product

Augeas

Configuration A

37 vulnerable

Vulnerable Software	Affected Versions
Augeas Augeas	Up to 0.10.0
Augeas Augeas	Version 0.0.1
Augeas Augeas	Version 0.0.2
Augeas Augeas	Version 0.0.3
Augeas Augeas	Version 0.0.4
Augeas Augeas	Version 0.0.5
Augeas Augeas	Version 0.0.6
Augeas Augeas	Version 0.0.7
Augeas Augeas	Version 0.0.8
Augeas Augeas	Version 0.1.0
Augeas Augeas	Version 0.1.1
Augeas Augeas	Version 0.2.0
Augeas Augeas	Version 0.2.1
Augeas Augeas	Version 0.2.2
Augeas Augeas	Version 0.3.0
Augeas Augeas	Version 0.3.1
Augeas Augeas	Version 0.3.2
Augeas Augeas	Version 0.3.3
Augeas Augeas	Version 0.3.4
Augeas Augeas	Version 0.3.5
Augeas Augeas	Version 0.3.6
Augeas Augeas	Version 0.4.0
Augeas Augeas	Version 0.4.1
Augeas Augeas	Version 0.4.2
Augeas Augeas	Version 0.5.0
Augeas Augeas	Version 0.5.1
Augeas Augeas	Version 0.5.2
Augeas Augeas	Version 0.5.3
Augeas Augeas	Version 0.6.0
Augeas Augeas	Version 0.7.0
Augeas Augeas	Version 0.7.1
Augeas Augeas	Version 0.7.2
Augeas Augeas	Version 0.7.3
Augeas Augeas	Version 0.7.4
Augeas Augeas	Version 0.8.0
Augeas Augeas	Version 0.8.1
Augeas Augeas	Version 0.9.0