CVE-2008-5377

CVE-2008-5377

EPSS 0.7%

pstopdf in CUPS 1.3.8 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/pstopdf.log temporary file, a different vulnerability than CVE-2001-1333.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://lists.debian.org/debian-devel/2008/08/msg00347.html https://www.exploit-db.com/exploits/7550 http://uvw.ru/report.sid.txt