Описание
The fbgs script in the fbi package 2.01-1.4, when the TMPDIR environment variable is not defined, allows local users to overwrite arbitrary files via a symlink attack on temporary files in /var/tmp/fbps-[PID].
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:fbida:fbida:2.01:*:*:*:*:*:*:*
cpe:2.3:a:fbida:fbida:2.02:*:*:*:*:*:*:*
cpe:2.3:a:fbida:fbida:2.03:*:*:*:*:*:*:*
EPSS
Процентиль: 22%
0.0007
Низкий
1.2 Low
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
ubuntu
больше 19 лет назад
The fbgs script in the fbi package 2.01-1.4, when the TMPDIR environment variable is not defined, allows local users to overwrite arbitrary files via a symlink attack on temporary files in /var/tmp/fbps-[PID].
debian
больше 19 лет назад
The fbgs script in the fbi package 2.01-1.4, when the TMPDIR environme ...
github
больше 3 лет назад
The fbgs script in the fbi package 2.01-1.4, when the TMPDIR environment variable is not defined, allows local users to overwrite arbitrary files via a symlink attack on temporary files in /var/tmp/fbps-[PID].
EPSS
Процентиль: 22%
0.0007
Низкий
1.2 Low
CVSS2
Дефекты
NVD-CWE-Other