Vulnerability Details CVE-2010-4817
pithos before 0.3.5 allows overwrite of arbitrary files via symlinks.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 48.0%
CVSS Severity
CVSS v3 Score 5.5
CVSS v2 Score 3.6
References
- https://access.redhat.com/security/cve/cve-2010-4817
- https://bugs.launchpad.net/pithos/%2Bbug/667896
- https://people.canonical.com/~ubuntu-security/cve/2010/CVE-2010-4817.html
- https://security-tracker.debian.org/tracker/CVE-2010-4817
- https://www.openwall.com/lists/oss-security/2011/08/19/10
- https://access.redhat.com/security/cve/cve-2010-4817
- https://bugs.launchpad.net/pithos/%2Bbug/667896
- https://people.canonical.com/~ubuntu-security/cve/2010/CVE-2010-4817.html
- https://security-tracker.debian.org/tracker/CVE-2010-4817
- https://www.openwall.com/lists/oss-security/2011/08/19/10
Products affected by CVE-2010-4817
-
cpe:2.3:a:pithos_project:pithos:-
-
cpe:2.3:o:debian:debian_linux:10.0
-
cpe:2.3:o:debian:debian_linux:8.0
-
cpe:2.3:o:debian:debian_linux:9.0