CDRDAO 1.1.4 and 1.1.5 allows local users to overwrite arbitrary files via a symlink attack on the $HOME/.cdrdao configuration file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
andreas mueller cdrdao 1.1.4 |
||
andreas mueller cdrdao 1.1.5 |