Описание
ClamAV 0.92 allows local users to overwrite arbitrary files via a symlink attack on (1) temporary files used by the cli_gentempfd function in libclamav/others.c or on (2) .ascii files used by sigtool, when utf16-decode is enabled.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 0.92~dfsg-2~dapper1ubuntu0.1 |
| devel | released | 0.92.1~dfsg-1 |
| edgy | ignored | end of life, was needed |
| feisty | released | 0.90.2-0ubuntu1.6 |
| gutsy | released | 0.91.2-3ubuntu2.3 |
| upstream | needs-triage |
Показывать по
Ссылки на источники
EPSS
2.1 Low
CVSS2
Связанные уязвимости
ClamAV 0.92 allows local users to overwrite arbitrary files via a symlink attack on (1) temporary files used by the cli_gentempfd function in libclamav/others.c or on (2) .ascii files used by sigtool, when utf16-decode is enabled.
ClamAV 0.92 allows local users to overwrite arbitrary files via a syml ...
ClamAV 0.92 allows local users to overwrite arbitrary files via a symlink attack on (1) temporary files used by the cli_gentempfd function in libclamav/others.c or on (2) .ascii files used by sigtool, when utf16-decode is enabled.
EPSS
2.1 Low
CVSS2