XRunSabre in sabre (aka xsabre) 0.2.4b relies on the ability to create /tmp/sabre.log, which allows local users to cause a denial of service (application unavailability) by creating a /tmp/sabre.log file that cannot be overwritten.
Max CVSS
2.1
EPSS Score
0.04%
Published
2008-10-03
Updated
2008-11-15
A certain Debian patch to the run scripts for sabre (aka xsabre) 0.2.4b allows local users to delete or overwrite arbitrary files via a symlink attack on unspecified .tmp files.
Max CVSS
7.2
EPSS Score
0.04%
Published
2008-10-03
Updated
2017-08-08
2 vulnerabilities found