Vulnerability in Redhat Fedora_core

CVE-2007-6131

buttonpressed.sh in scanbuttond 0.2.3 allows local users to overwrite arbitrary files via a symlink attack on the (1) scan.pnm and (2) scan.jpg temporary files.

EPSS: 0.004 (32.6th percentile) — read the EPSS interpretation.

Affected products

Redhat Fedora_core — versions f7
N/a — versions n/a

Weakness classification (CWE)

CWE-16

References

secalert@redhat.com (vdb-entry, x_refsource_BID)
secalert@redhat.com (x_refsource_SECUNIA, third-party-advisory)
secalert@redhat.com (x_refsource_OSVDB, vdb-entry)
secalert@redhat.com (x_refsource_CONFIRM, Exploit)
secalert@redhat.com (vdb-entry, x_refsource_SECTRACK)
secalert@redhat.com (vdb-entry, x_refsource_VUPEN)