CVE-2009-1215

Published: Apr 1, 2009

Modified: Aug 7, 2024

PUBLISHED

Description

Race condition in GNU screen 4.0.3 allows local users to create or overwrite arbitrary files via a symlink attack on the /tmp/screen-exchange temporary file.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://bugzilla.redhat.com/show_bug.cgi?id=492104

x_refsource_CONFIRM

[oss-security] 20090325 CVE request -- zsh, XFree86-xfs/xorg-x11-xfs, screen

mailing-list

x_refsource_MLIST

https://bugs.launchpad.net/ubuntu/+source/screen/+bug/315993

x_refsource_CONFIRM

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=521123

x_refsource_CONFIRM

screen-screenexchange-symlink(49887)

vdb-entry

x_refsource_XF

34521

vdb-entry

x_refsource_BID

http://savannah.gnu.org/bugs/?25296

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2009-1215

Description

Affected Products

References