The perform_file_save function in GNOME Workstation Command Center (gwcc) 0.9.6 and previous versions allows local users to create and overwrite arbitrary files via a symlink attack on the gwcc_out.txt temporary file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
brent ely gnome workstation command center 0.9.8 |
||
brent ely gnome workstation command center |