CVE-2008-5154

Name of the Vulnerable Software and Affected Versions p3nfs version 5.19

Description The issue allows local users to overwrite arbitrary files via a symlink attack on the /tmp/blue.log temporary file. This is related to the bluetooth.rc in p3nfs.

Recommendations For p3nfs version 5.19, consider restricting access to the bluetooth.rc file to prevent local users from performing a symlink attack on the /tmp/blue.log temporary file. As a temporary workaround, consider monitoring and limiting changes to the /tmp/blue.log file until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.