CVE-2008-1078

Severity CVSS v4.0:
Pending analysis
Type:
CWE-59 Link Following
Publication date:
29/02/2008
Last modified:
09/04/2025

Description

expn in the am-utils and net-fs packages for Gentoo, rPath Linux, and other distributions, allows local users to overwrite arbitrary files via a symlink attack on the expn[PID] temporary file. NOTE: this is the same issue as CVE-2003-0308.1.

Vulnerable products and versions

CPE From Up to
cpe:2.3:o:gentoo:linux:*:*:*:*:*:*:*:*
cpe:2.3:o:rpath:rpath_linux:*:*:*:*:*:*:*:*