Описание
postinst in twiki 4.1.2 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/twiki temporary file. NOTE: the vendor disputes this vulnerability, stating "this bug is invalid.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | DNE | |
| gutsy | ignored | end of life, was needs-triage |
| hardy | ignored | end of life |
| intrepid | released | 1:4.1.2-3.2ubuntu1.1 |
| jaunty | not-affected | 1:4.1.2-5ubuntu1 |
| karmic | not-affected | |
| lucid | DNE | |
| maverick | DNE | |
| natty | DNE |
Показывать по
Ссылки на источники
EPSS
6.9 Medium
CVSS2
Связанные уязвимости
postinst in twiki 4.1.2 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/twiki temporary file. NOTE: the vendor disputes this vulnerability, stating "this bug is invalid.
postinst in twiki 4.1.2 allows local users to overwrite arbitrary file ...
** DISPUTED ** postinst in twiki 4.1.2 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/twiki temporary file. NOTE: the vendor disputes this vulnerability, stating "this bug is invalid."
EPSS
6.9 Medium
CVSS2