Local File Overwrite Vulnerability in Rocks'n'Diamonds 3.3.0.1

Local File Overwrite Vulnerability in Rocks'n'Diamonds 3.3.0.1

CVE-2011-4606 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:P/A:P

Artsoft Entertainment Rocks'n'Diamonds (aka rocksndiamonds) 3.3.0.1 allows local users to overwrite arbitrary files via a symlink attack on .rocksndiamonds/cache/artworkinfo.cache under a user's home directory.

Learn more about our User Device Pen Test.