cbcvebase.

Gpsdrive vulnerabilities

4 known vulnerabilities affecting gpsdrive/gpsdrive.

Total CVEs
4
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM2

Vulnerabilities

Page 1 of 1
CVE-2005-3523P3HIGHCVSS 7.5PoC≤ 2.09≤ 2.10pre22005-11-07
CVE-2005-3523 [HIGH] CVE-2005-3523: Format string vulnerability in friendsd2 in GpsDrive allows remote attackers to execute arbitrary co Format string vulnerability in friendsd2 in GpsDrive allows remote attackers to execute arbitrary code via the dir (direction) field.
nvd
CVE-2008-5704P4HIGHCVSS 7.6≤ 2.10v1.32+2 more2008-12-22
CVE-2008-5704 [HIGH] CVE-2008-5704: src/unit_test.c in gpsdrive (aka gpsdrive-scripts) 2.10~pre4 might allow local users to overwrite ar src/unit_test.c in gpsdrive (aka gpsdrive-scripts) 2.10~pre4 might allow local users to overwrite arbitrary files via a symlink attack on the /tmp/gpsdrive-unit-test/proc temporary file, a different vector than CVE-2008-4959 and CVE-2008-5380.
nvd
CVE-2008-5380P4MEDIUMCVSS 6.9v2.092008-12-08
CVE-2008-5380 [MEDIUM] CVE-2008-5380: gpsdrive (aka gpsdrive-scripts) 2.09 allows local users to overwrite arbitrary files via a symlink a gpsdrive (aka gpsdrive-scripts) 2.09 allows local users to overwrite arbitrary files via a symlink attack on an (a) /tmp/geo#####, a (b) /tmp/geocaching.loc, a (c) /tmp/geo#####.*, or a (d) /tmp/geo.* temporary file, related to the (1) geo-code and (2) geo-nearest scripts, different vectors than CVE-2008-4959.
nvd
CVE-2008-5703P4MEDIUMCVSS 6.2≤ 2.10v1.32+2 more2008-12-22
CVE-2008-5703 [MEDIUM] CVE-2008-5703: gpsdrive (aka gpsdrive-scripts) 2.10~pre4 allows local users to overwrite arbitrary files via a syml gpsdrive (aka gpsdrive-scripts) 2.10~pre4 allows local users to overwrite arbitrary files via a symlink attack on the (a) /tmp/.smswatch or (b) /tmp/gpsdrivepos temporary file, related to (1) examples/gpssmswatch and (2) src/splash.c, different vectors than CVE-2008-4959 and CVE-2008-5380.
nvd
Gpsdrive vulnerabilities | cvebase