CVE-2008-5147

Опубликовано: 18 нояб. 2008

Источник: debian

Описание

test-pipe-to-pyodconverter.org.sh in docvert 2.4 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/outer.odt temporary file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
docvert	fixed	3.4-7		package

Примечания

unsafe code is in test script with multiple hardcoded files

Связанные уязвимости

CVE-2008-5147

ubuntu

около 17 лет назад

test-pipe-to-pyodconverter.org.sh in docvert 2.4 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/outer.odt temporary file.

CVE-2008-5147

nvd

около 17 лет назад

test-pipe-to-pyodconverter.org.sh in docvert 2.4 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/outer.odt temporary file.

GHSA-vggf-rh6p-w6xj

github

больше 3 лет назад

test-pipe-to-pyodconverter.org.sh in docvert 2.4 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/outer.odt temporary file.