CVE-2008-4984

2008-11-06T15:55:00
ID CVE-2008-4984
Type cve
Reporter cve@mitre.org
Modified 2017-08-08T01:33:00

Description

scratchbox2 1.99.0.24 allows local users to overwrite arbitrary files via a symlink attack on (a) /tmp/dpkg.#####.tmp, (b) /tmp/missing_deps.#####, and (c) /tmp/sb2-pkg-chk.$tstamp.##### temporary files, related to the (1) dpkg-checkbuilddeps and (2) sb2-check-pkg-mappings scripts.