NVD

Id
4782  
Name
CVE-2008-4995  
Description
redirect.pl in bk2site 1.1.9 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/redirect.log temporary file. NOTE: this vulnerability is only limited to debug mode, which is disabled by default.  
Reject
 
CVSS Version
2  
CVSS Score
6.9  
Severity
Medium  
CVSS Base Score
6.9  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
3.4  
CVSS Vector
(AV:L/AC:M/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-03  
Published
2008-11-07  
Modified Date
2012-10-30  
Seq
2008-4995  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
29910 4782 CVE-2008-4995 http://bugs.debian.org/496430  View
29911 4782 CVE-2008-4995 http://dev.gentoo.org/~rbu/security/debiantemp/bk2site  View
29912 4782 CVE-2008-4995 [oss-security] 20081030 CVE requests: tempfile issues for aview, mgetty, openoffice, crossfire  View
29913 4782 CVE-2008-4995 bk2site-redirect-symlink(46543)  View
29914 4782 CVE-2008-4995 https://bugs.gentoo.org/show_bug.cgi?id=235770  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
49726 JVNDB-2008-005036 bk2site の redirect.pl における任意のファイルを上書きされる脆弱性 bk2site の redirect.pl には、任意のファイルを上書きされる脆弱性が存在します。 CVE-2008-4995 35108 CVE-2008-4995 4782 6.9 http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-005036.html 2008-08-24 2012-09-25 View