CVE-2007-5718 - OpenCVE

vobcopy 0.5.14 allows local users to append data to an arbitrary file, or create an arbitrary new file, via a symlink attack on the (1) /tmp/vobcopy.bla or (2) /tmp/vobcopy_0.5.14.log temporary file.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact Complete

Availability Impact None

AV:L/AC:L/Au:N/C:N/I:C/A:N

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Debian	Debian Linux
Vobcopy	Vobcopy

Configuration 1 [-]

AND

OR	cpe:2.3:o:debian:debian_linux:3.1:::::::*
	cpe:2.3:o:debian:debian_linux:3.1::alpha:::::
	cpe:2.3:o:debian:debian_linux:3.1::amd64:::::
	cpe:2.3:o:debian:debian_linux:3.1::arm:::::
	cpe:2.3:o:debian:debian_linux:3.1::hppa:::::
	cpe:2.3:o:debian:debian_linux:3.1::ia-32:::::
	cpe:2.3:o:debian:debian_linux:3.1::ia-64:::::
	cpe:2.3:o:debian:debian_linux:3.1::m68k:::::
	cpe:2.3:o:debian:debian_linux:3.1::mips:::::
	cpe:2.3:o:debian:debian_linux:3.1::mipsel:::::
	cpe:2.3:o:debian:debian_linux:3.1::ppc:::::
	cpe:2.3:o:debian:debian_linux:3.1::s-390:::::
	cpe:2.3:o:debian:debian_linux:3.1::sparc:::::
	cpe:2.3:o:debian:debian_linux:3.1:r1::::::
	cpe:2.3:o:debian:debian_linux:3.2.4:::::::*
	cpe:2.3:o:debian:debian_linux:4.0:::::::*
	cpe:2.3:o:debian:debian_linux:4.0::alpha:::::
	cpe:2.3:o:debian:debian_linux:4.0::amd64:::::
	cpe:2.3:o:debian:debian_linux:4.0::arm:::::
	cpe:2.3:o:debian:debian_linux:4.0::hppa:::::
	cpe:2.3:o:debian:debian_linux:4.0::ia-32:::::
	cpe:2.3:o:debian:debian_linux:4.0::ia-64:::::
	cpe:2.3:o:debian:debian_linux:4.0::m68k:::::
	cpe:2.3:o:debian:debian_linux:4.0::mips:::::
	cpe:2.3:o:debian:debian_linux:4.0::mipsel:::::
	cpe:2.3:o:debian:debian_linux:4.0::powerpc:::::
	cpe:2.3:o:debian:debian_linux:4.0::s-390:::::
	cpe:2.3:o:debian:debian_linux:4.0::sparc:::::

cpe:2.3:a:vobcopy:vobcopy:0.5.14:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=448319
http://osvdb.org/41997
http://secunia.com/advisories/27420
http://secunia.com/advisories/29259
http://security.gentoo.org/glsa/glsa-200803-11.xml
http://www.securityfocus.com/bid/26233
https://exchange.xforce.ibmcloud.com/vulnerabilities/38172

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-10-30T21:00:00

Updated: 2024-08-07T15:39:13.645Z

Reserved: 2007-10-30T00:00:00

Link: CVE-2007-5718

Vulnrichment

No data.

NVD

Status : Modified

Published: 2007-10-30T21:46:00.000

Modified: 2017-07-29T01:33:49.443

Link: CVE-2007-5718

Redhat

No data.

Metrics

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact Complete

Availability Impact None

Affected Vendors & Products

Metrics

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact Complete

Availability Impact None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object