cbcvebase.
CVE-2008-0673
published 2008-02-12

CVE-2008-0673: TinTin++ 1.97.9 and WinTin++ 1.97.9 open files on the basis of an inbound file-transfer request, before the user has an opportunity to decline the request…

PriorityP339high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
2.60%
83.4th percentile
TinTin++ 1.97.9 and WinTin++ 1.97.9 open files on the basis of an inbound file-transfer request, before the user has an opportunity to decline the request, which allows remote attackers to truncate arbitrary files in the top level of a home directory.

Affected

3 ranges
VendorProductVersion rangeFixed in
debiantintin< tintin++ 1.97.9-2 (bookworm)tintin++ 1.97.9-2 (bookworm)
tintintintin
tintinwintin

CVSS provenance

nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv7.5HIGH
vendor_debian7.5LOW
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.