exploitDog

CVE-2010-2449

Опубликовано: 07 нояб. 2019

Источник: ubuntu

Приоритет: low

EPSS Низкий

CVSS2: 5.5

CVSS3: 6.5

Описание

Gource through 0.26 logs to a predictable file name (/tmp/gource-$UID.tmp), enabling attackers to overwrite an arbitrary file via a symlink attack.

Релиз	Статус	Примечание
devel	not-affected
hardy	DNE
lucid	ignored	end of life
maverick	not-affected	0.26-2
natty	not-affected
oneiric	not-affected
precise	not-affected
quantal	not-affected
raring	not-affected
saucy	not-affected

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2010-2449

EPSS

Процентиль: 68%

0.00563

Низкий

5.5 Medium

CVSS2

6.5 Medium

CVSS3

Связанные уязвимости

CVE-2010-2449

CVSS3: 6.5

nvd

около 6 лет назад

Gource through 0.26 logs to a predictable file name (/tmp/gource-$UID.tmp), enabling attackers to overwrite an arbitrary file via a symlink attack.

CVE-2010-2449

CVSS3: 6.5

debian

около 6 лет назад

Gource through 0.26 logs to a predictable file name (/tmp/gource-$UID. ...

GHSA-7v54-gcwf-r4xw

github

больше 3 лет назад

Gource through 0.26 logs to a predictable file name (/tmp/gource-$UID.tmp), enabling attackers to overwrite an arbitrary file via a symlink attack.

EPSS

Процентиль: 68%

0.00563

Низкий

5.5 Medium

CVSS2

6.5 Medium

CVSS3