CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2011-4606

Artsoft Entertainment Rocks'n'Diamonds (aka rocksndiamonds) 3.3.0.1 allows local users to overwrite arbitrary files via a symlink attack on .rocksndiamonds/cache/artworkinfo.cache under a user's home directory.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 20.8%

CVSS Severity

CVSS v2 Score 3.6

References

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=651620
http://openwall.com/lists/oss-security/2011/12/12/2
http://openwall.com/lists/oss-security/2011/12/12/3
https://bugzilla.redhat.com/show_bug.cgi?id=766805
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=651620
http://openwall.com/lists/oss-security/2011/12/12/2
http://openwall.com/lists/oss-security/2011/12/12/3
https://bugzilla.redhat.com/show_bug.cgi?id=766805

Products affected by CVE-2011-4606

Artsoft » Rocks'n'diamonds » Version: 3.3.0.1

cpe:2.3:a:artsoft:rocks'n'diamonds:3.3.0.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2011-4606

Products

Pricing

Contact Us