PT-2008-6756 · Gpsdrive · Gpsdrive

Raphael Geissert

Published

2008-12-22

Updated

2009-05-20

CVE-2008-5704

CVSS v2.0

7.6

High

Vector

AV:N/AC:H/Au:N/C:C/I:C/A:C

src/unit test.c in gpsdrive (aka gpsdrive-scripts) 2.10~pre4 might allow local users to overwrite arbitrary files via a symlink attack on the /tmp/gpsdrive-unit-test/proc temporary file, a different vector than CVE-2008-4959 and CVE-2008-5380.

Fix

Link Following

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-59

Related Identifiers

CVE-2008-5704

Affected Products

Gpsdrive

PT-2008-6756 · Gpsdrive · Gpsdrive

CVE-2008-5704

Weakness Enumeration

Related Identifiers

Affected Products

References · 3