Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Message-ID: <Pine.GSO.4.51.0901272138210.25454@faron.mitre.org>
Date: Tue, 27 Jan 2009 21:38:42 -0500 (EST)
From: "Steven M. Christey" <coley@...us.mitre.org>
To: oss-security@...ts.openwall.com
cc: coley@...re.org
Subject: Re: CVE Request: winetricks symlink problem


======================================================
Name: CVE-2009-0313
Status: Candidate
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0313
Reference: CONFIRM:http://code.google.com/p/winezeug/source/detail?r=253
Reference: BID:33474
Reference: URL:http://www.securityfocus.com/bid/33474

winetricks before 20081223 allows local users to overwrite arbitrary
files via a symlink attack on the x_showmenu.txt temporary file.


Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.