CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2008-5704

src/unit_test.c in gpsdrive (aka gpsdrive-scripts) 2.10~pre4 might allow local users to overwrite arbitrary files via a symlink attack on the /tmp/gpsdrive-unit-test/proc temporary file, a different vector than CVE-2008-4959 and CVE-2008-5380.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 53.5%

CVSS Severity

CVSS v2 Score 7.6

References

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=508597
http://openwall.com/lists/oss-security/2008/12/17/15
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=508597
http://openwall.com/lists/oss-security/2008/12/17/15

Products affected by CVE-2008-5704

Gpsdrive » Gpsdrive » Version: Any

cpe:2.3:a:gpsdrive:gpsdrive:*
Gpsdrive » Gpsdrive » Version: 1.32

cpe:2.3:a:gpsdrive:gpsdrive:1.32
Gpsdrive » Gpsdrive » Version: 1.33

cpe:2.3:a:gpsdrive:gpsdrive:1.33
Gpsdrive » Gpsdrive » Version: 2.09

cpe:2.3:a:gpsdrive:gpsdrive:2.09

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-5704

Products

Pricing

Contact Us