CVE-2008-0666
news
/
advisories
/
forum
/
software
/
advertising
/
search
/
exploits
[EN]
securityvulns.ru
no-pyccku
CVE
CVE-2008-0666
Status
Candidate
Description
Website META Language (WML) 2.0.11 allows local users to overwrite arbitrary files via a symlink attack on (1) the /tmp/pe.tmp.$$ temporary file used by wml_contrib/wmg.cgi and (2) temporary files used by wml_backend/p3_eperl/eperl_sys.c.
Phase
Assigned (07.02.2008)
SecurityVulns:
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
WML symbolic links vulnerability
NVD:
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-0666
References
BID :
27685
CONFIRM :
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=4...
DEBIAN :
DSA-1492
SECUNIA :
28829
SECUNIA :
28856
About
|
Terms of use
|
Privacy Policy
©
SecurityVulns
,
3APA3A
, Vladimir Dubrovin
Enter your search terms
Web
securityvulns.com
Submit search form
