Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-5743

Overview

Vulnerability Score 6.9 6.9
CVE Id CVE-2008-5743
Last Modified 24 Apr 2010 01:32:15
Published 26 Dec 2008 04:30:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2008-5743

Summary

pdfjam creates the (1) pdf90, (2) pdfjoin, and (3) pdfnup files with a predictable name, which allows local users to overwrite arbitrary files via a symlink attack.

Vulnerable Systems

Application

  • Pdfjam Nil


References

FEDORA - FEDORA-2009-2655

FEDORA - FEDORA-2009-2651

MISC - https://bugzilla.novell.com/show_bug.cgi?id=459031

XF - pdfjam-pdf90-pdfjoin-pdfnup-symlink(47519)

BID - 32931

MLIST - [oss-security] 20081219 CVE request - pdfjam

SECUNIA - 34312

SECUNIA - 33278


Last Updated: 27 May 2016 10:48:54