logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2003-0885

Description

Xscreensaver 4.14 contains certain debugging code that should have been omitted, which causes Xscreensaver to create temporary files insecurely in the (1) apple2, (2) xanalogtv, and (3) pong screensavers, and allows local users to overwrite arbitrary files via a symlink attack.


Affected Package


OS OS Version Package Name Package Version
Debian 12 xscreensaver 6.02+dfsg1-2
Debian 11 xscreensaver 5.45+dfsg1-2
Debian 10 xscreensaver 5.42+dfsg1-1
Debian 999 xscreensaver 6.02+dfsg1-2
Debian 9 xscreensaver 5.36-1

Related