CVE-2010-2449 (gource)

Gource through 0.26 logs to a predictable file name (/tmp/gource-$UID.tmp), enabling attackers to overwrite an arbitrary file via a symlink attack.

View Full Alert

Related Posts

  • CVE-2010-2247

    makepasswd 1.10 default settings generate insecure passwords View Full Alert

  • CVE-2010-2490

    Mumble: murmur-server has DoS due to malformed client query View Full Alert

  • CVE-2010-3293

    mailscanner can allow local users to prevent virus signatures from being updated View Full Alert