TinTin++ 1.97.9 and WinTin++ 1.97.9 open files on the basis of an inbound file-transfer request, before the user has an opportunity to decline the request, which allows remote attackers to truncate arbitrary files in the top level of a home directory.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2008-02-12T00:00:00

Updated: 2024-08-07T07:54:22.983Z

Reserved: 2008-02-11T00:00:00

Link: CVE-2008-0673

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2008-02-12T01:00:00.000

Modified: 2024-11-21T00:42:38.960

Link: CVE-2008-0673

cve-icon Redhat

No data.