CVE-2007-4460

The RenderV2ToFile function in tag_file.cpp in id3lib (aka libid3) 3.8.3 allows local users to overwrite arbitrary files via a symlink attack on a temporary file whose name is constructed from the name of a file being tagged.
Configurations

Configuration 1

cpe:2.3:a:id3lib:id3lib:3.8.3:*:*:*:*:*:*:*

Information

Published : 2007-08-21 09:17

Updated : 2008-09-05 09:28


NVD link : CVE-2007-4460

Mitre link : CVE-2007-4460

Products Affected
No products.