CVE-2015-7758 in Gummiinformation

Résumé

par MITRE

Gummi 0.6.5 allows local users to write to arbitrary files via a symlink attack on a temporary dot file that uses the name of an existing file and a (1) .aux, (2) .log, (3) .out, (4) .pdf, or (5) .toc extension for the file name, as demonstrated by .thesis.tex.aux.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Réserver

08/10/2015

Divulgation

08/01/2016

Modérer

accepté

Entrée

VDB-80140

CPE

prêt

EPSS

0.00394

KEV

non

Activités

très faible

Sources

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!