4.6
CVSSv2

CVE-2007-6209

Published: 04/12/2007 Updated: 29/07/2017
CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9
VMScore: 409
Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Summary

Util/difflog.pl in zsh 4.3.4 allows local users to overwrite arbitrary files via a symlink attack on temporary files.

Vulnerable Product Search on Vulmon Subscribe to Product

zsh zsh 4.3.4

Vendor Advisories

Debian Bug report logs - #454073 insecure tmp file handling in difflogpl Package: zsh; Maintainer for zsh is Debian Zsh Maintainers <pkg-zsh-devel@listsaliothdebianorg>; Source for zsh is src:zsh (PTS, buildd, popcon) Reported by: Nico Golde <nion@debianorg> Date: Sun, 2 Dec 2007 21:12:01 UTC Severity: importa ...