CVE-2008-5703

gpsdrive (aka gpsdrive-scripts) 2.10~pre4 allows local users to overwrite arbitrary files via a symlink attack on the (a) /tmp/.smswatch or (b) /tmp/gpsdrivepos temporary file, related to (1) examples/gpssmswatch and (2) src/splash.c, different vectors than CVE-2008-4959 and CVE-2008-5380.
Configurations

Configuration 1

cpe:2.3:a:gpsdrive:gpsdrive:*:pre2:*:*:*:*:*:*
cpe:2.3:a:gpsdrive:gpsdrive:1.33:*:*:*:*:*:*:*
cpe:2.3:a:gpsdrive:gpsdrive:1.32:*:*:*:*:*:*:*
cpe:2.3:a:gpsdrive:gpsdrive:2.09:*:*:*:*:*:*:*

Information

Published : 2008-12-22 03:30

Updated : 2009-08-19 05:22


NVD link : CVE-2008-5703

Mitre link : CVE-2008-5703

Products Affected
No products.
CWE