netdisco-mibs-installer 1.0 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/netdisco-mibs-0.6.tar.gz temporary file, related to the (1) netdisco-mibs-install and (2) netdisco-mibs-download scripts.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
http://lists.debian.org/debian-devel/2008/08/msg00285.html |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2008-12-08T23:00:00Z
Updated: 2024-09-16T22:10:24.662Z
Reserved: 2008-12-08T00:00:00Z
Link: CVE-2008-5379
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2008-12-08T23:30:00.503
Modified: 2008-12-09T05:00:00.000
Link: CVE-2008-5379
Redhat
No data.