Computer Security
[EN] securityvulns.ru no-pyccku


Amarok symbolic links vulnerability
Published:18.08.2008
Source:
SecurityVulns ID:9231
Type:local
Threat Level:
5/10
Description:Unsafe temporary files creation.
Affected:AMAROK : Amarok 1.4
CVE:CVE-2008-3699 (The MagnatuneBrowser::listDownloadComplete function in magnatunebrowser/magnatunebrowser.cpp in Amarok before 1.4.10 allows local users to overwrite arbitrary files via a symlink attack on the album_info.xml temporary file.)
Original documentdocumentMANDRIVA, [ MDVSA-2008:172 ] amarok (18.08.2008)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod