Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5940

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2007-5940
Last Modified 07 Mar 2011 10:01:32
Published 13 Nov 2007 06:46:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2007-5940

Summary

feynmf.pl in feynmf 1.08, as used in TeXLive 2007, allows local users to overwrite arbitrary files and execute arbitrary code via a symlink attack on the feynmf$$.pl temporary file.

Vulnerable Systems

Application

  • Tug Texlive 2007


References

VUPEN - ADV-2007-3974

OSVDB - 42397

CONFIRM - http://bugs.gentoo.org/show_bug.cgi?id=198231

BID - 26507

GENTOO - GLSA-200711-32

SECUNIA - 27739

SECUNIA - 27737


Last Updated: 27 May 2016 10:46:20