The (1) ncsarmt and (2) ncsawrap scripts in xmcd 2.6 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/Mosaic.*pid temporary file.
Max CVSS
6.9
EPSS Score
0.04%
Published
2008-11-07
Updated
2017-08-08
xmcdconfig in xmcd for Debian GNU/Linux 2.6-17.1 creates /var/lib/cddb and /var/lib/xmcd/discog with world writable permissions, which allows local users to cause a denial of service (disk consumption).
Max CVSS
2.1
EPSS Score
0.04%
Published
2006-05-23
Updated
2017-07-20
cda in xmcd 3.0.2 and 2.6 in SuSE Linux allows local users to overwrite arbitrary files via a symlink attack.
Max CVSS
6.2
EPSS Score
0.04%
Published
2001-08-03
Updated
2017-10-10
3 vulnerabilities found