CVE-2008-5703
published 2008-12-22CVE-2008-5703: gpsdrive (aka gpsdrive-scripts) 2.10~pre4 allows local users to overwrite arbitrary files via a symlink attack on the (a) /tmp/.smswatch or (b)…
PriorityP417medium6.2CVSS 2.0
AVLACHAuNCCICAC
EPSS
0.30%
21.2th percentile
gpsdrive (aka gpsdrive-scripts) 2.10~pre4 allows local users to overwrite arbitrary files via a symlink attack on the (a) /tmp/.smswatch or (b) /tmp/gpsdrivepos temporary file, related to (1) examples/gpssmswatch and (2) src/splash.c, different vectors than CVE-2008-4959 and CVE-2008-5380.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| gpsdrive | gpsdrive | <= 2.10 | — |
| gpsdrive | gpsdrive | — | — |
| gpsdrive | gpsdrive | — | — |
| gpsdrive | gpsdrive | — | — |
CVSS provenance
nvdv2.06.2MEDIUMAV:L/AC:H/Au:N/C:C/I:C/A:C
vendor_redhat6.9MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
gpsdrive: insecure temporary file use in gpssmswatch and splash.c
vendor_redhat·CVSS 6.9
CVE-2008-5703 [MEDIUM] CWE-377 gpsdrive: insecure temporary file use in gpssmswatch and splash.c
gpsdrive: insecure temporary file use in gpssmswatch and splash.c
gpsdrive (aka gpsdrive-scripts) 2.10~pre4 allows local users to overwrite arbitrary files via a symlink attack on the (a) /tmp/.smswatch or (b) /tmp/gpsdrivepos temporary file, related to (1) examples/gpssmswatch and (2) src/splash.c, different vectors than CVE-2008-4959 and CVE-2008-5380.
GHSA
GHSA-7grv-vq6p-hf4x: gpsdrive (aka gpsdrive-scripts) 2
ghsa_unreviewed·2022-05-17·CVSS 6.9
CVE-2008-5703 [MEDIUM] CWE-59 GHSA-7grv-vq6p-hf4x: gpsdrive (aka gpsdrive-scripts) 2
gpsdrive (aka gpsdrive-scripts) 2.10~pre4 allows local users to overwrite arbitrary files via a symlink attack on the (a) /tmp/.smswatch or (b) /tmp/gpsdrivepos temporary file, related to (1) examples/gpssmswatch and (2) src/splash.c, different vectors than CVE-2008-4959 and CVE-2008-5380.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2008-5703 gpsdrive: insecure temporary file use in gpssmswatch and splash.c
bugzilla·2009-01-27·CVSS 6.9
CVE-2008-5703 [MEDIUM] CVE-2008-5703 gpsdrive: insecure temporary file use in gpssmswatch and splash.c
CVE-2008-5703 gpsdrive: insecure temporary file use in gpssmswatch and splash.c
Common Vulnerabilities and Exposures assigned an identifier CVE-2008-5703 to the following vulnerability:
gpsdrive (aka gpsdrive-scripts) 2.10~pre4 allows local users to overwrite
arbitrary files via a symlink attack on the (a) /tmp/.smswatch or (b)
/tmp/gpsdrivepos temporary file, related to (1) examples/gpssmswatch and (2)
src/splash.c, different vectors than CVE-2008-4959 and CVE-2008-5380.
References:
http://openwall.com/lists/oss-security/2008/12/17/15
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=508597
http://sourceforge.net/tracker/index.php?func=detail&aid=2121124&group_id=148048&atid=770280
http://www.securityfocus.com/bid/32887
Discussion:
Upstream fixes:
gpssmswatch was removed in:
http://g
Bugzilla
CVE-2008-4959 gpsdrive: geo-code insecure temporary file use
bugzilla·2008-11-06·CVSS 6.9
CVE-2008-4959 [MEDIUM] CVE-2008-4959 gpsdrive: geo-code insecure temporary file use
CVE-2008-4959 gpsdrive: geo-code insecure temporary file use
Common Vulnerabilities and Exposures assigned an identifier CVE-2008-4959 to the following vulnerability:
geo-code in gpsdrive-scripts 2.10~pre4 allows local users to overwrite
arbitrary files via a symlink attack on (1) /tmp/geo.google, (2)
/tmp/geo.yahoo, (3) /tmp/geo.coords, and (4) /tmp/geo#####.coords
temporary files.
References:
http://bugs.debian.org/496436
http://dev.gentoo.org/~rbu/security/debiantemp/gpsdrive-scripts
https://bugs.gentoo.org/show_bug.cgi?id=235770
http://www.openwall.com/lists/oss-security/2008/10/30/2
Discussion:
Created attachment 322708
Patch used by Debian
Attached is the patch that was used by Debian gpsdrive maintainer. It is not the same as originally proposed one linked in the Debian bug:
h
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=508597http://openwall.com/lists/oss-security/2008/12/17/15http://secunia.com/advisories/31694http://secunia.com/advisories/33825http://sourceforge.net/tracker/index.php?func=detail&aid=2121124&group_id=148048&atid=770280http://www.securityfocus.com/bid/32887https://www.redhat.com/archives/fedora-package-announce/2009-February/msg00187.htmlhttp://bugs.debian.org/cgi-bin/bugreport.cgi?bug=508597http://openwall.com/lists/oss-security/2008/12/17/15http://secunia.com/advisories/31694http://secunia.com/advisories/33825http://sourceforge.net/tracker/index.php?func=detail&aid=2121124&group_id=148048&atid=770280http://www.securityfocus.com/bid/32887https://www.redhat.com/archives/fedora-package-announce/2009-February/msg00187.html
2008-12-22
Published