exploitDog

GHSA-cmgp-37ph-2ph7

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

ClamAV 0.92 allows local users to overwrite arbitrary files via a symlink attack on (1) temporary files used by the cli_gentempfd function in libclamav/others.c or on (2) .ascii files used by sigtool, when utf16-decode is enabled.

ClamAV 0.92 allows local users to overwrite arbitrary files via a symlink attack on (1) temporary files used by the cli_gentempfd function in libclamav/others.c or on (2) .ascii files used by sigtool, when utf16-decode is enabled.

Ссылки

EPSS

Процентиль: 14%

0.00047

Низкий

CVE ID

Дефекты

CWE-59

Связанные уязвимости

CVE-2007-6595

ubuntu

почти 18 лет назад

ClamAV 0.92 allows local users to overwrite arbitrary files via a symlink attack on (1) temporary files used by the cli_gentempfd function in libclamav/others.c or on (2) .ascii files used by sigtool, when utf16-decode is enabled.

CVE-2007-6595

nvd

почти 18 лет назад

ClamAV 0.92 allows local users to overwrite arbitrary files via a symlink attack on (1) temporary files used by the cli_gentempfd function in libclamav/others.c or on (2) .ascii files used by sigtool, when utf16-decode is enabled.

CVE-2007-6595

debian

почти 18 лет назад

ClamAV 0.92 allows local users to overwrite arbitrary files via a syml ...

EPSS

Процентиль: 14%

0.00047

Низкий

CVE ID

Дефекты

CWE-59