3 matches found
CVE-2008-5370
pvpgn-support-installer in pvpgn 1.8.1 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/pvpgn-support-1.0.tar.gz temporary file...
CVE-2008-5370
pvpgn-support-installer in pvpgn 1.8.1 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/pvpgn-support-1.0.tar.gz temporary file...
CVE-2008-5370
CVE-2008-5370 affects pvpgn 1.8.1 through the pvpgn-support-installer component. A symlink attack on the temporary file /tmp/pvpgn-support-1.0.tar.gz allows local users to overwrite arbitrary files. Root cause is a race in creating or handling the temporary tarball, enabling file replacement prio...