CVE-2008-5157 in tauinfo

Summary

tau 2.16.4 allows local users to overwrite arbitrary files via a symlink attack on a (1) /tmp/makefile.tau.*.##### or (2) /tmp/makefile.tau*.##### temporary file, related to the (a) tau_cxx, (b) tau_f90, and (c) tau_cc scripts.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

11/18/2008

Disclosure

11/18/2008

Moderation

VulDB entry created

Entries

VDB-45108 (1)

CPE

ready

CWE

CWE-59 (Confirmed)

CVSS

8.4

EPSS

0.00027

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2008-5157
NVD	https://nvd.nist.gov/vuln/detail/CVE-2008-5157
CVE Details	https://www.cvedetails.com/cve/CVE-2008-5157/

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!