Symlink Attack Vulnerability in GNU gv Affects Local File Safety
CVE-2010-2056

Currently unrated

Key Information:

Vendor: Gnu
Status: Gv
Vendor: CVE Published:; 22 July 2010

Summary

The GNU gv application, prior to version 3.7.0, is susceptible to a symlink attack that enables local users to overwrite arbitrary files via the exploitation of temporary files. This flaw highlights a significant risk in file management processes within the application, prompting users to adopt immediate remediation measures to safeguard against unauthorized file manipulations.

References

http://secunia.com/advisories/40532

third-party-advisoryx_refsource_SECUNIA

https://bugzilla.redhat.com/show_bug.cgi?id=599621

x_refsource_CONFIRM

http://www.vupen.com/english/advisories/2010/1757

vdb-entryx_refsource_VUPEN

Timeline

Vulnerability published
Jul 22, 2010
Vulnerability Reserved
May 25, 2010