Lucene search
RedhatCVE-2010-4338HistoryJan 20, 2011 - 7:00 p.m.
CVE-2010-4338
2011-01-2019:00:06
CWE-59
redhat
web.nvd.nist.gov
20
cve-2010-4338
ocrodjvu
vulnerability
debian gnu/linux
symlink attack
cuneiform
ocr engine
CVSS2
6.2
Attack Vector
LOCAL
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:H/Au:N/C:C/I:C/A:C
AI Score
6.4
Confidence
Low
EPSS
0
Percentile
5.1%
ocrodjvu 0.4.6-1 on Debian GNU/Linux allows local users to modify arbitrary files via a symlink attack on temporary files that are generated when Cuneiform is invoked as the OCR engine.
Affected configurations
Node
jwilkocrodjvuMatch0.4.6-1
debianlinux
Related
debiancve
debiancve
CVE-2010-4338
2011-01-20 19:00:06
ubuntucve
ubuntucve
CVE-2010-4338
2011-01-20 00:00:00
osv
osv
ocrodjvu is vulnerable to Arbitrary File Modification via symlink attack
2022-05-17 02:04:28
nvd
nvd
CVE-2010-4338
2011-01-20 19:00:06
cvelist
cvelist
CVE-2010-4338
2011-01-20 18:00:00
prion
prion
Design/Logic Flaw
2011-01-20 19:00:00
github
github
ocrodjvu is vulnerable to Arbitrary File Modification via symlink attack
2022-05-17 02:04:28
CVSS2
6.2
Attack Vector
LOCAL
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:H/Au:N/C:C/I:C/A:C
AI Score
6.4
Confidence
Low
EPSS
0
Percentile
5.1%
Related for CVE-2010-4338