CVE-2018-6198

Опубликовано: 25 янв. 2018

Источник: ubuntu

Приоритет: low

EPSS Низкий

CVSS2: 3.3

CVSS3: 4.7

Описание

w3m through 0.5.3 does not properly handle temporary files when the ~/.w3m directory is unwritable, which allows a local attacker to craft a symlink attack to overwrite arbitrary files.

Релиз	Статус	Примечание
artful	released	0.5.3-34ubuntu0.1
devel	released	0.5.3-36build1
esm-apps/xenial	released	0.5.3-26ubuntu0.2
esm-infra-legacy/trusty	released	0.5.3-15ubuntu0.2
precise/esm	not-affected	0.5.3-5ubuntu1.3
trusty	released	0.5.3-15ubuntu0.2
trusty/esm	released	0.5.3-15ubuntu0.2
upstream	released	0.5.3-36
xenial	released	0.5.3-26ubuntu0.2

Показывать по

Ссылки на источники

EPSS

Процентиль: 40%

0.00179

Низкий

3.3 Low

CVSS2

4.7 Medium

CVSS3

Связанные уязвимости

CVE-2018-6198

CVSS3: 4.3

redhat

около 8 лет назад

w3m through 0.5.3 does not properly handle temporary files when the ~/.w3m directory is unwritable, which allows a local attacker to craft a symlink attack to overwrite arbitrary files.

CVE-2018-6198

CVSS3: 4.7

nvd

около 8 лет назад

w3m through 0.5.3 does not properly handle temporary files when the ~/.w3m directory is unwritable, which allows a local attacker to craft a symlink attack to overwrite arbitrary files.

CVE-2018-6198

CVSS3: 4.7

debian

около 8 лет назад

w3m through 0.5.3 does not properly handle temporary files when the ~/ ...

GHSA-gvrg-2xvq-7j38

CVSS3: 4.7

github

больше 3 лет назад

w3m through 0.5.3 does not properly handle temporary files when the ~/.w3m directory is unwritable, which allows a local attacker to craft a symlink attack to overwrite arbitrary files.

openSUSE-SU-2019:1142-1

suse-cvrf

почти 7 лет назад

Security update for w3m

EPSS

Процентиль: 40%

0.00179

Низкий

3.3 Low

CVSS2

4.7 Medium

CVSS3

CVE-2018-6198

Описание

Пакет w3m

Ссылки на источники

Связанные уязвимости