Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4908

Overview

Vulnerability Score 3.3 3.3
CVE Id CVE-2008-4908
Last Modified 19 Aug 2009 01:20:51
Published 03 Nov 2008 07:57:30
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2008-4908

Summary

maps/Info/combine.pl in CrossFire crossfire-maps 1.11.0 allows local users to overwrite arbitrary files via a symlink attack on a temporary file.

Vulnerable Systems

Application

  • Crossfire 1.11.0


References

BID - 30893

XF - crossfiremaps-combine-symlink(44841)

SECUNIA - 32487

CONFIRM - http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=496358


Last Updated: 27 May 2016 10:48:39