Filtered by vendor Debian Subscriptions
Filtered by product Xsabre Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2008-4407 1 Debian 1 Xsabre 2024-11-21 N/A
XRunSabre in sabre (aka xsabre) 0.2.4b relies on the ability to create /tmp/sabre.log, which allows local users to cause a denial of service (application unavailability) by creating a /tmp/sabre.log file that cannot be overwritten.
CVE-2008-4406 1 Debian 1 Xsabre 2024-11-21 N/A
A certain Debian patch to the run scripts for sabre (aka xsabre) 0.2.4b allows local users to delete or overwrite arbitrary files via a symlink attack on unspecified .tmp files.