Local File Manipulation Vulnerability in Xsabre by Debian
CVE-2008-4406

Currently unrated

Key Information:

Vendor: Debian
Status: Xsabre
Vendor: CVE Published:; 3 October 2008

What is CVE-2008-4406?

A local file manipulation vulnerability exists in the Xsabre 0.2.4b application due to improper handling of temporary files by a Debian patch. This flaw allows local users to exploit symlink attacks, potentially leading to the deletion or overwriting of arbitrary files on the system. Precautionary measures should be implemented to mitigate risks associated with unauthorized file access.

References

http://osvdb.org/48895

vdb-entryx_refsource_OSVDB

http://bugs.debian.org/433996

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/45715

vdb-entryx_refsource_XF

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 3, 2008
Vulnerability Reserved
Oct 3, 2008