2 matches found
CVE-2004-1108
qpkg in Gentoolkit 0.2.0pre10 and earlier allows local users to overwrite arbitrary files via a symlink attack on a temporary directory...
CVE-2004-1108
CVE-2004-1108 affects Gentoo: Gentoo Portage (dispatch-conf) and Gentoolkit’s qpkg query tool, with the vulnerable component being temporary file handling. Gentoolkit 0.2.0_pre10 and earlier uses predictable names in the temporary directory, enabling a local attacker to create a symlink to a targ...