Local File Overwrite Vulnerability in GNU Troff by The GNU Project
CVE-2009-5079

Currently unrated

Key Information:

Vendor

Gnu
Status
Groff
Vendor
CVE Published:
30 June 2011

What is CVE-2009-5079?

The GNU Troff, also known as groff, prior to version 1.21, comprises scripts including gendef.sh, fixinfo.sh, and runtests.in that are susceptible to a local file overwrite vulnerability. This occurs when a local user exploits a symlink attack on temporary files created by the system. By manipulating the symbolic links, an attacker can overwrite arbitrary files, potentially compromising system integrity and user data.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://openwall.com/lists/oss-security/2009/08/14/4
mailing-listx_refsource_MLIST
http://openwall.com/lists/oss-security/2009/08/14/5
mailing-listx_refsource_MLIST
http://cvsweb.openwall.com/cgi/cvsweb.cgi/Owl/packages/gr...
x_refsource_CONFIRM

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.