PT-2007-6869 · Tex · Tetex+1

Lubomir Kundrak

Published

2007-11-13

Updated

2018-10-15

CVE-2007-5936

CVSS v2.0

3.6

Low

Vector

AV:L/AC:L/Au:N/C:P/I:P/A:N

Name of the Vulnerable Software and Affected Versions teTeX versions prior to 2007 TeXlive versions prior to 2007

Description The issue allows local users to obtain sensitive information and modify certain data by creating specific temporary files before they are processed by dviljk, which can then be read or modified in place.

Recommendations For teTeX versions prior to 2007, update to a version newer than 2007 to resolve the issue. For TeXlive versions prior to 2007, update to a version newer than 2007 to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

CVE-2007-5936

Affected Products

Tex Live

Tetex

PT-2007-6869 · Tex · Tetex+1

CVE-2007-5936

Weakness Enumeration

Related Identifiers

Affected Products

References · 30