Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2011-2684

Опубликовано: 23 окт. 2017
Источник: debian
EPSS Низкий

Описание

foo2zjs before 20110722dfsg-3ubuntu1 as packaged in Ubuntu, 20110722dfsg-1 as packaged in Debian unstable, and 20090908dfsg-5.1+squeeze0 as packaged in Debian squeeze create temporary files insecurely, which allows local users to write over arbitrary files via a symlink attack on /tmp/foo2zjs.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
foo2zjsfixed20110722dfsg-1package
foo2zjsno-dsalennypackage
foo2zjsfixed20090908dfsg-5.1+squeeze0squeezepackage

EPSS

Процентиль: 21%
0.00069
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2011-2684

CVSS3: 5.5
ubuntu
около 8 лет назад

foo2zjs before 20110722dfsg-3ubuntu1 as packaged in Ubuntu, 20110722dfsg-1 as packaged in Debian unstable, and 20090908dfsg-5.1+squeeze0 as packaged in Debian squeeze create temporary files insecurely, which allows local users to write over arbitrary files via a symlink attack on /tmp/foo2zjs.

nvd логотип

CVE-2011-2684

CVSS3: 5.5
nvd
около 8 лет назад

foo2zjs before 20110722dfsg-3ubuntu1 as packaged in Ubuntu, 20110722dfsg-1 as packaged in Debian unstable, and 20090908dfsg-5.1+squeeze0 as packaged in Debian squeeze create temporary files insecurely, which allows local users to write over arbitrary files via a symlink attack on /tmp/foo2zjs.

github логотип

GHSA-grv5-4xr2-q4p5

CVSS3: 5.5
github
больше 3 лет назад

foo2zjs before 20110722dfsg-3ubuntu1 as packaged in Ubuntu, 20110722dfsg-1 as packaged in Debian unstable, and 20090908dfsg-5.1+squeeze0 as packaged in Debian squeeze create temporary files insecurely, which allows local users to write over arbitrary files via a symlink attack on /tmp/foo2zjs.

EPSS

Процентиль: 21%
0.00069
Низкий