What is CVE-2007-6358?

CVE-2007-6358 is a vulnerability in Glyph_and_cog Pdftops. Published 2007-12-15.

Is CVE-2007-6358 known to be exploited?

3 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Glyph_and_cog Pdftops

CVE-2007-6358

pdftops.pl before 1.20 in alternate pdftops filter allows local users to overwrite arbitrary files via a symlink attack on the pdfin.[PID].tmp temporary file, which is created when pdftops reads a PDF file from stdin, such as when pdftops…

EPSS: 0.005 (36.8th percentile) — read the EPSS interpretation.

Affected products

Glyph_and_cog Pdftops
N/a — versions n/a

Public proof-of-concept exploits

References

cve@mitre.org (x_refsource_SECUNIA, Vendor Advisory, third-party-advisory)
cve@mitre.org (x_refsource_SECUNIA, Vendor Advisory, third-party-advisory)
cve@mitre.org (x_refsource_UBUNTU, vendor-advisory)
cve@mitre.org (x_refsource_CONFIRM, Exploit)
cve@mitre.org (vendor-advisory, x_refsource_GENTOO)
cve@mitre.org (vdb-entry, x_refsource_BID)
cve@mitre.org (x_refsource_CONFIRM)
cve@mitre.org (vendor-advisory, x_refsource_DEBIAN)
cve@mitre.org (x_refsource_SECUNIA, Vendor Advisory, third-party-advisory)
cve@mitre.org (x_refsource_OSVDB, vdb-entry)

Frequently asked questions

What is CVE-2007-6358?: CVE-2007-6358 is a vulnerability in Glyph_and_cog Pdftops. Published 2007-12-15.
Is CVE-2007-6358 known to be exploited?: 3 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.