Vulnerability Details CVE-2000-0270
The make-temp-name Lisp function in Emacs 20 creates temporary files with predictable names, which allows attackers to conduct a symlink attack.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 28.8%
CVSS Severity
CVSS v2 Score 3.6
References
- http://www.securityfocus.com/bid/1126
- http://www.securityfocus.com/templates/archive.pike?list=1&date=2000-04-15&msg=tg4s8zioxq.fsf%40mercury.rus.uni-stuttgart.de
- http://www.securityfocus.com/bid/1126
- http://www.securityfocus.com/templates/archive.pike?list=1&date=2000-04-15&msg=tg4s8zioxq.fsf%40mercury.rus.uni-stuttgart.de
Products affected by CVE-2000-0270
-
cpe:2.3:a:gnu:emacs:20.0
-
cpe:2.3:a:gnu:emacs:20.1
-
cpe:2.3:a:gnu:emacs:20.2
-
cpe:2.3:a:gnu:emacs:20.3
-
cpe:2.3:a:gnu:emacs:20.4
-
cpe:2.3:a:gnu:emacs:20.5
-
cpe:2.3:a:gnu:emacs:20.6