CVE-2008-4978
N/A
N/A
Summary
radiance 3R9+20080530 allows local users to overwrite arbitrary files via a symlink attack on (a) /tmp/opt.fmt, (b) /tmp/out#####.fmt, (c) /tmp/tf#####.dat, (d) /tmp/gsf#####, (e) /tmp/sc#####.sh, (f) /tmp/il#####.pic, (g) /tmp/tl#####.pic, (h) /tmp/ds#####.pic, (i) /tmp/tfa#####, and (j) /tmp/sed##### temporary files, related to the (1) optics2rad, (2) pdelta, (3) dayfact, and (4) raddepend scripts.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://www.securityfocus.com/bid/30953
- http://www.openwall.com/lists/oss-security/2008/10/30/2
- https://bugs.gentoo.org/show_bug.cgi?id=235770
- http://uvw.ru/report.lenny.txt
- http://dev.gentoo.org/~rbu/security/debiantemp/radiance
- https://exchange.xforce.ibmcloud.com/vulnerabilities/44846
- http://bugs.debian.org/496433
References
- http://www.securityfocus.com/bid/30953
- http://www.openwall.com/lists/oss-security/2008/10/30/2
- https://bugs.gentoo.org/show_bug.cgi?id=235770
- http://uvw.ru/report.lenny.txt
- http://dev.gentoo.org/~rbu/security/debiantemp/radiance
- https://exchange.xforce.ibmcloud.com/vulnerabilities/44846
- http://bugs.debian.org/496433
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.