The save function in br/prefmanager.d in projectl 1.001 creates a projectL.prf file in the current working directory, which allows local users to overwrite arbitrary files via a symlink attack.
Max CVSS
4.6
EPSS Score
0.04%
Published
2008-07-18
Updated
2017-08-08
1 vulnerabilities found