← back
CVE-2012-3355

CVE-2012-3355

EPSS 0.6%
(1) AlbumTab.py, (2) ArtistTab.py, (3) LinksTab.py, and (4) LyricsTab.py in the Context module in GNOME Rhythmbox 0.13.3 and earlier allows local users to execute arbitrary code via a symlink attack on a temporary HTML template file in the /tmp/context directory.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=616673http://people.canonical.com/~ubuntu-security/cve/2012/CVE-2012-3355.htmlhttps://bugzilla.gnome.org/show_bug.cgi?id=678661https://bugzilla.redhat.com/show_bug.cgi?id=835076https://exchange.xforce.ibmcloud.com/vulnerabilities/76538https://hermes.opensuse.org/messages/15351848http://www.openwall.com/lists/oss-security/2012/06/25/5http://www.openwall.com/lists/oss-security/2012/06/25/7http://www.securityfocus.com/bid/54186http://www.ubuntu.com/usn/USN-1503-1