Vulnerability Details CVE-2009-1753
Coccinelle 0.1.7 allows local users to overwrite arbitrary files via a symlink attack on an unspecified "result file."
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 8.2%
CVSS Severity
CVSS v2 Score 3.3
References
- http://packages.debian.org/changelogs/pool/main/c/coccinelle/coccinelle_0.1.7.deb-3/changelog
- http://secunia.com/advisories/35012
- http://secunia.com/advisories/35459
- http://www.openwall.com/lists/oss-security/2009/05/06/2
- http://www.securityfocus.com/bid/34848
- https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00731.html
- http://packages.debian.org/changelogs/pool/main/c/coccinelle/coccinelle_0.1.7.deb-3/changelog
- http://secunia.com/advisories/35012
- http://secunia.com/advisories/35459
- http://www.openwall.com/lists/oss-security/2009/05/06/2
- http://www.securityfocus.com/bid/34848
- https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00731.html
Products affected by CVE-2009-1753
-
cpe:2.3:a:emn:coccinelle:0.1.7