Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0673

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-0673
Last Modified 15 Feb 2012 10:31:53
Published 11 Feb 2008 08:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-0673

Summary

TinTin++ 1.97.9 and WinTin++ 1.97.9 open files on the basis of an inbound file-transfer request, before the user has an opportunity to decline the request, which allows remote attackers to truncate arbitrary files in the top level of a home directory.

Vulnerable Systems

Application

  • Tintin Wintin%2b%2b 1.97.9

  • Tintin%2b%2b 1.97.9


References

VUPEN - ADV-2008-0449

BID - 27660

BUGTRAQ - 20080206 Chat vulnerabilities in TinTin++ 1.97.9

SECUNIA - 28833

MISC - http://aluigi.altervista.org/adv/rintintin-adv.txt

SREASON - 3632

GENTOO - GLSA-201111-07


Last Updated: 27 May 2016 10:58:16