CVE-2008-4440

CVE-2008-4440 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

The to-upgrade plugin in feta 1.4.16 allows local users to overwrite arbitrary files via a symlink on the (1) /tmp/feta.install.$USER and (2) /tmp/feta.avail.$USER temporary files.

Learn more about our User Device Pen Test.