CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Gnome: >> At-Spi2-Atk Security Vulnerabilities

CVE-2012-3378

The register_application function in atk-adaptor/bridge.c in GNOME at-spi2-atk 2.5.2 does not seed the random number generator and generates predictable temporary file names, which makes it easier for local users to create or truncate files via a symlink attack on a temporary socket file in /tmp/at-spi2.

CVSS Score

3.3

EPSS Score

0.001

Published

2012-08-31

Page 1

Vulnerabilities

Vulnerable Software

Gnome: >> At-Spi2-Atk Security Vulnerabilities

Products

Pricing

Contact Us