Symlink Vulnerability in Python 2.4.5 FAQ Wizard Tool
CVE-2008-4108

Currently unrated

Key Information:

Vendor

Python Software Foundation

Status
Python
Vendor
CVE Published:
18 September 2008

What is CVE-2008-4108?

The FAQ Wizard moving tool in Python 2.4.5 is susceptible to a symlink attack, enabling local users to overwrite files via a temporary file located in a potentially untrusted directory. This flaw can lead to unauthorized file modifications, creating significant security risks if exploited properly. Users should ensure their systems are secured against such vulnerabilities by applying appropriate precautions and updates.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://securityreason.com/securityalert/4274
third-party-advisoryx_refsource_SREASON
http://www.securityfocus.com/bid/31184
vdb-entryx_refsource_BID
https://exchange.xforce.ibmcloud.com/vulnerabilities/45161
vdb-entryx_refsource_XF

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.