cbcvebase.
CVE-2008-5703
published 2008-12-22

CVE-2008-5703: gpsdrive (aka gpsdrive-scripts) 2.10~pre4 allows local users to overwrite arbitrary files via a symlink attack on the (a) /tmp/.smswatch or (b)…

PriorityP417medium6.2CVSS 2.0
AVLACHAuNCCICAC
EPSS
0.30%
21.2th percentile
gpsdrive (aka gpsdrive-scripts) 2.10~pre4 allows local users to overwrite arbitrary files via a symlink attack on the (a) /tmp/.smswatch or (b) /tmp/gpsdrivepos temporary file, related to (1) examples/gpssmswatch and (2) src/splash.c, different vectors than CVE-2008-4959 and CVE-2008-5380.

Affected

4 ranges
VendorProductVersion rangeFixed in
gpsdrivegpsdrive<= 2.10
gpsdrivegpsdrive
gpsdrivegpsdrive
gpsdrivegpsdrive

CVSS provenance

nvdv2.06.2MEDIUMAV:L/AC:H/Au:N/C:C/I:C/A:C
vendor_redhat6.9MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.