2 matches found
CVE-2008-4407
CVE-2008-4407 affects sabre (xsabre) 0.2.4b. The issue arises from relying on creating /tmp/sabre.log, allowing a local attacker to cause a denial of service by placing a non-overwritable /tmp/sabre.log. No explicit remediation/versions beyond 0.2.4b are stated in the provided documents. Exploita...
CVE-2008-4406
The CVE-2008-4406 entry describes a Debian patch to the sabre (xsabre) 0.2.4b run scripts that enables local users to delete or overwrite arbitrary files via a symlink attack on unspecified .tmp files. Root cause: a symlink vulnerability in the patch path that affects local users. Impact per sour...