Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-3216

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2008-3216
Last Modified 10 Sep 2008 09:12:08
Published 18 Jul 2008 12:41:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2008-3216

Summary

The save function in br/prefmanager.d in projectl 1.001 creates a projectL.prf file in the current working directory, which allows local users to overwrite arbitrary files via a symlink attack.

Vulnerable Systems

Application

  • Debian Projectl 1.001


References

XF - projectl-save-symlink(44059)

MLIST - [oss-security] 20080709 CVE id request: projectl

CONFIRM - http://bugs.debian.org/489988


Last Updated: 27 May 2016 10:48:06