CVE-2009-1215
published 2009-04-01CVE-2009-1215: Race condition in GNU screen 4.0.3 allows local users to create or overwrite arbitrary files via a symlink attack on the /tmp/screen-exchange temporary file.
low1.9CVSS 3.1
AVLACMAuNCNIPAN
Race condition in GNU screen 4.0.3 allows local users to create or overwrite arbitrary files via a symlink attack on the /tmp/screen-exchange temporary file.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | screen | < screen 4.0.3-13 (bookworm) | screen 4.0.3-13 (bookworm) |
| gnu | gnu_screen | — | — |
| gnu | screen | >= 0 < 4.0.3-13 | 4.0.3-13 |
| gnu | screen | >= 0 < 4.0.3-13 | 4.0.3-13 |
| gnu | screen | >= 0 < 4.0.3-13 | 4.0.3-13 |
| gnu | screen | >= 0 < 4.0.3-13 | 4.0.3-13 |
CVSS provenance
nvd1.9LOWAV:L/AC:M/Au:N/C:N/I:P/A:N
osv1.9LOW