|
|
CVE Reference: CVE-2008-0167 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2008-0167 |
|
|
Description: The write_array_file function in utils/include.pl in GForge 4.5.14 updates configuration files by truncating them to zero length and then writing new data, which might allow attackers to bypass intended access restrictions or have unspecified other impact in opportunistic circumstances. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/42456 SAID Secunia Advisory: SA30088 Secunia Advisory: SA30286 DEBIAN http://www.debian.org/security/2008/dsa-1577 CONFIRM http://security.debian.org/pool/updates/main/g/gforge/gforge_4.5.14-22etch8.diff.gz BID 29215 |
|
| Return to the previous page. |
