CVE-2008-5007

CVE-2008-5007 · MEDIUM Severity

AV:L/AC:M/AU:N/C:C/I:C/A:C

create_lazarus_export_tgz.sh in lazarus 0.9.24 allows local users to overwrite or delete arbitrary files via a symlink attack on a (1) /tmp/lazarus.tgz temporary file or a (2) /tmp/lazarus temporary directory.

Learn more about our User Device Pen Test.