Lucene search

[email protected]NVD:CVE-2008-3791

HistorySep 03, 2008 - 2:12 p.m.

CVE-2008-3791

2008-09-0314:12:00

CWE-59

[email protected]

web.nvd.nist.gov

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

6.2 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

src/main-win.c in GPicView 0.1.9 in Lightweight X11 Desktop Environment (LXDE) allows local users to overwrite arbitrary files via a symlink attack on the /tmp/rot.jpg temporary file.

Affected configurations

NVD

Node

lxdelightweight_x11_desktop_environmentMatch0.1.9

References

bugs.debian.org/cgi-bin/bugreport.cgi?bug=495968

lxde.svn.sourceforge.net/viewvc/lxde?view=rev&sortby=date&revision=845

sourceforge.net/tracker/index.php?func=detail&aid=2019481&group_id=180858&atid=894869

www.openwall.com/lists/oss-security/2008/08/25/3

www.openwall.com/lists/oss-security/2008/08/26/10

www.openwall.com/lists/oss-security/2008/08/26/5

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

6.2 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2008-3791

debiancve1 ubuntucve1 cvelist1 cve1 prion1