PT-2003-1628 · Emacs · Eldav Webdav Client For Emacs

Published

2003-06-28

·

Updated

2008-09-05

·

CVE-2003-0438

CVSS v2.0

1.2

Low

VectorAV:L/AC:H/Au:N/C:N/I:P/A:N
Name of the Vulnerable Software and Affected Versions: eldav WebDAV client for Emacs versions 0.7.2 and earlier
Description: The issue allows local users to create or overwrite arbitrary files via a symlink attack on temporary files.
Recommendations: For eldav WebDAV client for Emacs versions 0.7.2 and earlier, update to a version later than 0.7.2 to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Related Identifiers

CVE-2003-0438
DSA-325

Affected Products

Eldav Webdav Client For Emacs