Gpsdrive vulnerabilities
4 known vulnerabilities affecting gpsdrive/gpsdrive.
Total CVEs
4
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2005-3523P3HIGHCVSS 7.5PoC≤ 2.09≤ 2.10pre22005-11-07
CVE-2005-3523 [HIGH] CVE-2005-3523: Format string vulnerability in friendsd2 in GpsDrive allows remote attackers to execute arbitrary co
Format string vulnerability in friendsd2 in GpsDrive allows remote attackers to execute arbitrary code via the dir (direction) field.
nvd
CVE-2008-5704P4HIGHCVSS 7.6≤ 2.10v1.32+2 more2008-12-22
CVE-2008-5704 [HIGH] CVE-2008-5704: src/unit_test.c in gpsdrive (aka gpsdrive-scripts) 2.10~pre4 might allow local users to overwrite ar
src/unit_test.c in gpsdrive (aka gpsdrive-scripts) 2.10~pre4 might allow local users to overwrite arbitrary files via a symlink attack on the /tmp/gpsdrive-unit-test/proc temporary file, a different vector than CVE-2008-4959 and CVE-2008-5380.
nvd
CVE-2008-5380P4MEDIUMCVSS 6.9v2.092008-12-08
CVE-2008-5380 [MEDIUM] CVE-2008-5380: gpsdrive (aka gpsdrive-scripts) 2.09 allows local users to overwrite arbitrary files via a symlink a
gpsdrive (aka gpsdrive-scripts) 2.09 allows local users to overwrite arbitrary files via a symlink attack on an (a) /tmp/geo#####, a (b) /tmp/geocaching.loc, a (c) /tmp/geo#####.*, or a (d) /tmp/geo.* temporary file, related to the (1) geo-code and (2) geo-nearest scripts, different vectors than CVE-2008-4959.
nvd
CVE-2008-5703P4MEDIUMCVSS 6.2≤ 2.10v1.32+2 more2008-12-22
CVE-2008-5703 [MEDIUM] CVE-2008-5703: gpsdrive (aka gpsdrive-scripts) 2.10~pre4 allows local users to overwrite arbitrary files via a syml
gpsdrive (aka gpsdrive-scripts) 2.10~pre4 allows local users to overwrite arbitrary files via a symlink attack on the (a) /tmp/.smswatch or (b) /tmp/gpsdrivepos temporary file, related to (1) examples/gpssmswatch and (2) src/splash.c, different vectors than CVE-2008-4959 and CVE-2008-5380.
nvd