CVE-2008-4953

Priority
Description
** DISPUTED ** firehol in firehol 1.256 allows local users to overwrite
arbitrary files via a symlink attack on (1) /tmp/.firehol-tmp-#####-*-* and
(2) /tmp/firehol.conf temporary files. NOTE: the vendor disputes this
vulnerability, stating that an attack "would require an attacker to create
1073741824*PID-RANGE symlinks."
Notes
mdeslaurdisputed because attack is unfeasible
Package
Upstream:ignored
More Information

Updated: 2020-01-29 19:33:29 UTC (commit 768ceb2fdee6790d707d0f681e1b54916744af1e)