Merkaartor 0.14 allows local users to append data to arbitrary files via a symlink attack on the /tmp/merkaartor.log temporary file.
References
Configurations
History
No history.
Information
Published : 2009-12-03 19:30
Updated : 2024-02-28 11:21
NVD link : CVE-2009-4193
Mitre link : CVE-2009-4193
CVE.ORG link : CVE-2009-4193
JSON object : View
Products Affected
merkaartor
- merkaartor
CWE
CWE-59
Improper Link Resolution Before File Access ('Link Following')