Lucene search
PRIOn knowledge basePRION:CVE-2008-4997HistoryNov 07, 2008 - 7:36 p.m.
Design/Logic Flaw
2008-11-0719:36:00
PRIOn knowledge base
www.prio-n.com
5
6.5 Medium
AI Score
Confidence
Low
6.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
5.2%
dfxml-invoice in datafreedom-perl 0.1.7 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/zenity temporary file. NOTE: the vendor disputes this vulnerability, stating that the vector is solely "an EXAMPLE used in the manpage.
| CPE | Name | Operator | Version |
|---|---|---|---|
| datafreedom-perl | eq | 0.1.7 |
Related
cve
cve
CVE-2008-4997
2022-10-03 16:14:00
cvelist
cvelist
CVE-2008-4997
2022-10-03 16:14:00
nvd
nvd
CVE-2008-4997
2008-11-07 19:36:24
ubuntucve
ubuntucve
CVE-2008-4997
2008-11-07 00:00:00
6.5 Medium
AI Score
Confidence
Low
6.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
5.2%
Related for PRION:CVE-2008-4997