Launchpad CVE tracker

CVE 2008-5377

pstopdf in CUPS 1.3.8 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/pstopdf.log temporary file, a different vulnerability than CVE-2001-1333.

Related bugs and status

CVE-2008-5377 (Candidate) is related to these bugs:

Bug #329293: Please update cupsys to the generic version for hardy to fix several security vulnerabilities

Summary				In	Importance	Status
	329293	Please update cupsys to the generic version for hardy to fix several security vulnerabilities		The Dell Mini Project	Critical	Fix Released

See the

CVE page on Mitre.org for more details.

References

MLIST: [debian-devel] 2008081...
MISC: http://uvw.ru/report.s...
EXPLOIT-DB: 7550

Launchpad.net

CVE 2008-5377

Related bugs and status

Related bugs

References