Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-0032

Overview

Vulnerability Score 6.9 6.9
CVE Id CVE-2009-0032
Last Modified 28 Jan 2009 12:00:00
Published 27 Jan 2009 03:30:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2009-0032

Summary

CUPS on Mandriva Linux 2008.0, 2008.1, 2009.0, Corporate Server (CS) 3.0 and 4.0, and Multi Network Firewall (MNF) 2.0 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/pdf.log temporary file.

Vulnerable Systems

Application

  • Apple Cups


References

XF - cups-pdflog-symlink(48210)

BID - 33418

MANDRIVA - MDVSA-2009:029

MANDRIVA - MDVSA-2009:028

MANDRIVA - MDVSA-2009:027

SECTRACK - 1021637


Last Updated: 27 May 2016 10:49:33