4 matches found
CVE-2008-5007
createlazarusexporttgz.sh in lazarus 0.9.24 allows local users to overwrite or delete arbitrary files via a symlink attack on a 1 /tmp/lazarus.tgz temporary file or a 2 /tmp/lazarus temporary directory...
CVE-2008-5007
createlazarusexporttgz.sh in lazarus 0.9.24 allows local users to overwrite or delete arbitrary files via a symlink attack on a 1 /tmp/lazarus.tgz temporary file or a 2 /tmp/lazarus temporary directory...
CVE-2008-5007
CVE-2008-5007 affects Lazarus 0.9.24. The vulnerability arises from a symlink attack on temporary paths used by create_lazarus_export_tgz.sh, specifically (1) /tmp/lazarus.tgz and (2) /tmp/lazarus, allowing local users to overwrite or delete arbitrary files. The root cause is improper handling of...
CVE-2008-5007
createlazarusexporttgz.sh in lazarus 0.9.24 allows local users to overwrite or delete arbitrary files via a symlink attack on a 1 /tmp/lazarus.tgz temporary file or a 2 /tmp/lazarus temporary directory...