Lucene search

PRIOn knowledge basePRION:CVE-2011-0702

HistoryFeb 14, 2011 - 9:00 p.m.

Arbitrary file deletion

2011-02-1421:00:00

PRIOn knowledge base

www.prio-n.com

6.3 Medium

AI Score

Confidence

Low

3.3 Low

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:N/I:P/A:P

0.0004 Low

EPSS

Percentile

5.4%

JSON

The feh_unique_filename function in utils.c in feh before 1.11.2 might allow local users to overwrite arbitrary files via a symlink attack on a /tmp/feh_ temporary file.

CPENameOperatorVersion
feheq1.3.5
feheq1.4
feheq1.4.1
feheq1.4.2
feheq1.4.3
feheq1.5
feheq1.6
feheq1.6.1
feheq1.7
feheq1.8

Name	Operator	Version
feh	eq	1.3.5
feh	eq	1.4
feh	eq	1.4.1
feh	eq	1.4.2
feh	eq	1.4.3
feh	eq	1.5
feh	eq	1.6
feh	eq	1.6.1
feh	eq	1.7
feh	eq	1.8

Rows per page:

1-10 of 151

References

bugs.debian.org/cgi-bin/bugreport.cgi?bug=612035

openwall.com/lists/oss-security/2011/02/09/1

openwall.com/lists/oss-security/2011/02/09/14

secunia.com/advisories/43221

bugs.launchpad.net/ubuntu/+source/feh/+bug/607328

bugzilla.redhat.com/show_bug.cgi?id=676389

derf.homelinux.org/git/feh/commit/?id=23421a86cc826dd30f3dc4f62057fafb04b3ac40

derf.homelinux.org/git/feh/commit/?id=29ab0855f044ef2fe9c295b72abefcb37f0861a5

github.com/derf/feh/issues/

6.3 Medium

AI Score

Confidence

Low

3.3 Low

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:N/I:P/A:P

0.0004 Low

EPSS

Percentile

5.4%

JSON

Related for PRION:CVE-2011-0702