Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5200

Overview

Vulnerability Score 3.3 3.3
CVE Id CVE-2007-5200
Last Modified 15 Nov 2008 12:00:00
Published 14 Oct 2007 02:17:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2007-5200

Summary

hugin, as used on various operating systems including SUSE openSUSE 10.2 and 10.3, allows local users to overwrite arbitrary files via a symlink attack on the hugin_debug_optim_results.txt temporary file.

Vulnerable Systems

Operating System

  • Novell Opensuse 10.2

  • Novell Opensuse 10.3


References

FEDORA - FEDORA-2007-2989

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=362851

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=332401

BID - 26730

SUSE - SUSE-SR:2007:020

GENTOO - GLSA-200712-01

SECUNIA - 27952

SECUNIA - 27653

SECUNIA - 27623

SECUNIA - 27229

OSVDB - 42224


Last Updated: 27 May 2016 10:46:06