Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5207

Overview

Vulnerability Score 3.3 3.3
CVE Id CVE-2007-5207
Last Modified 15 Nov 2008 02:00:05
Published 04 Oct 2007 05:17:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2007-5207

Summary

guilt 0.27 allows local users to overwrite arbitrary files via a symlink attack on a guilt.log.[PID] temporary file.

Vulnerable Systems

Application

  • Debian Guilt 0.27


References

OSVDB - 41534

CONFIRM - http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=445308

XF - guilt-variable-symlink(36970)

BID - 25941

SECUNIA - 27076


Last Updated: 27 May 2016 10:46:06