CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
EPSS
Percentile
25.6%
Multiple untrusted search path vulnerabilities in pdfjam allow local users
to gain privileges via a Trojan horse program in (1) the current working
directory or (2) /var/tmp, related to the (a) pdf90, (b) pdfjoin, and ©
pdfnup scripts.
Author | Note |
---|---|
mdeslaur | we carry a debian patch that randomizes filenames (debian #510584) |