RSS   Vulnerabilities for 'Datafreedom-perl'   RSS

2008-11-07
 
CVE-2008-4997

CWE-59
 

 
** DISPUTED ** dfxml-invoice in datafreedom-perl 0.1.7 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/zenity temporary file. NOTE: the vendor disputes this vulnerability, stating that the vector is solely "an EXAMPLE used in the manpage."

 


Copyright 2024, cxsecurity.com

 

Back to Top