Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2008-4946

Опубликовано: 05 нояб. 2008
Источник: nvd
CVSS2: 6.9
EPSS Низкий

Описание

convirt 0.8.2 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/set_output temporary file, related to the (1) template/provision.sh, (2) Linux_CD_Install/provision.sh, (3) Fedora_PV_Install/provision.sh, (4) CentOS_PV_Install/provision.sh, (5) common/provision.sh, (6) example/provision.sh, and (7) Windows_CD_Install/provision.sh scripts in image_store/.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:convirture:convirt:0.8.2:*:*:*:*:*:*:*

EPSS

Процентиль: 6%
0.00025
Низкий

6.9 Medium

CVSS2

Дефекты

CWE-59

Связанные уязвимости

ubuntu логотип

CVE-2008-4946

ubuntu
больше 17 лет назад

convirt 0.8.2 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/set_output temporary file, related to the (1) _template_/provision.sh, (2) Linux_CD_Install/provision.sh, (3) Fedora_PV_Install/provision.sh, (4) CentOS_PV_Install/provision.sh, (5) common/provision.sh, (6) example/provision.sh, and (7) Windows_CD_Install/provision.sh scripts in image_store/.

debian логотип

CVE-2008-4946

debian
больше 17 лет назад

convirt 0.8.2 allows local users to overwrite arbitrary files via a sy ...

github логотип

GHSA-h2r2-442r-cwwf

github
больше 3 лет назад

convirt 0.8.2 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/set_output temporary file, related to the (1) _template_/provision.sh, (2) Linux_CD_Install/provision.sh, (3) Fedora_PV_Install/provision.sh, (4) CentOS_PV_Install/provision.sh, (5) common/provision.sh, (6) example/provision.sh, and (7) Windows_CD_Install/provision.sh scripts in image_store/.

EPSS

Процентиль: 6%
0.00025
Низкий

6.9 Medium

CVSS2

Дефекты

CWE-59