CVE-2008-5380

gpsdrive (aka gpsdrive-scripts) 2.09 allows local users to overwrite arbitrary files via a symlink attack on an (a) /tmp/geo#####, a (b) /tmp/geocaching.loc, a (c) /tmp/geo#####.*, or a (d) /tmp/geo.* temporary file, related to the (1) geo-code and (2) geo-nearest scripts, different vectors than CVE-2008-4959.
Configurations

Configuration 1

cpe:2.3:a:gpsdrive:gpsdrive:2.09:*:*:*:*:*:*:*

Information

Published : 2008-12-08 11:30

Updated : 2009-08-19 05:21


NVD link : CVE-2008-5380

Mitre link : CVE-2008-5380

Products Affected
No products.
CWE