The GUI for aptlinex before 0.91 does not sufficiently warn the user of potentially dangerous actions, which allows remote attackers to remove or modify packages via an apt:// URL.
Max CVSS
5.0
EPSS Score
0.19%
Published
2008-04-22
Updated
2017-08-08
aptlinex before 0.91 allows local users to overwrite arbitrary files via a symlink attack on the gambas-apt.lock temporary file.
Max CVSS
7.2
EPSS Score
0.04%
Published
2008-04-22
Updated
2017-08-08
2 vulnerabilities found