CVE-2016-7490

Summary

The installation script studioexpressinstall for Teradata Studio Express 15.12.00.00 creates files in /tmp insecurely. A malicious local user could create a symlink in /tmp and possibly clobber system files or perhaps elevate privileges.

Affected Software

VendorProductVersion RangeStatus
TeradataStudio Express15.12.00.00affected

Weaknesses

  • symlink

ADP Enrichment

CVE Program Container

Additional References

References