Eric Raymond » SNG : Security Vulnerabilities, CVEs,
sng_regress in SNG 1.0.2 allows local users to overwrite arbitrary files via a symlink attack on the (1) /tmp/recompiled$$.png, (2) /tmp/decompiled$$.sng, and (3) /tmp/canonicalized$$.sng temporary files.
Max CVSS
6.9
EPSS Score
0.04%
Published
2009-03-04
Updated
2017-08-17
1 vulnerabilities found