3 matches found
Gentoo Security Advisory GLSA 200909-08 (cmus)
The remote host is missing updates announced in advisory GLSA 200909-08. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...
CVE-2008-5375
cmus-status-display in cmus 2.2.0 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/cmus-status temporary file...
CVE-2008-5375
CVE-2008-5375 affects cmus 2.2.0: cmus-status-display does not securely handle the /tmp/cmus-status temporary file, allowing a local attacker to perform a symlink attack and overwrite arbitrary files with the privileges of the running user. The issue is local in scope and tied to insecure tempora...