CVE-2011-3616 - CERT CVE

  1. CVE-2011-3616

ID CVE-2011-3616
Sažetak The getSkillname function in the eve module in Conky 1.8.1 and earlier allows local users to overwrite arbitrary files via a symlink attack on /tmp/.cesf.
Reference
CVSS
Base: 6.3
Impact: 9.2
Exploitability:3.4
Pristup
VektorSloženostAutentikacija
LOCAL MEDIUM NONE
Impact
PovjerljivostCjelovitostDostupnost
NONE COMPLETE COMPLETE
CVSS vektor AV:L/AC:M/Au:N/C:N/I:C/A:C
Zadnje važnije ažuriranje 12-03-2012 - 04:00
Objavljeno 04-11-2011 - 21:55