CVE-2008-4191

Опубликовано: 24 авг. 2008

Источник: redhat

Описание

extract-table.pl in Emacspeak 26 and 28 allows local users to overwrite arbitrary files via a symlink attack on the extract-table.csv temporary file.

Отчет

Red Hat Product Security has rated this issue as having Low security impact. This issue is not currently planned to be addressed in future updates. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 4	emacspeak	Will not fix
Red Hat Enterprise Linux 5	emacspeak	Will not fix

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

https://bugzilla.redhat.com/show_bug.cgi?id=460435emacspeak: Insecure auxiliary /tmp file usage (symlink attack possible)

Связанные уязвимости

CVE-2008-4191

ubuntu

почти 17 лет назад

extract-table.pl in Emacspeak 26 and 28 allows local users to overwrite arbitrary files via a symlink attack on the extract-table.csv temporary file.

CVE-2008-4191

nvd

почти 17 лет назад

extract-table.pl in Emacspeak 26 and 28 allows local users to overwrite arbitrary files via a symlink attack on the extract-table.csv temporary file.

CVE-2008-4191

debian

почти 17 лет назад

extract-table.pl in Emacspeak 26 and 28 allows local users to overwrit ...

GHSA-3qp2-xpxj-256j

github

больше 3 лет назад

extract-table.pl in Emacspeak 26 and 28 allows local users to overwrite arbitrary files via a symlink attack on the extract-table.csv temporary file.