Release DateSep 02, 2010 |
Severitylow |
ImpactAn attacker with local access could potentially exploit this issue to perform symbolic-link attacks, overwriting arbitrary files in the context of the affected application.Successfully mounting a symlink attack may allow the attacker to delete or corrupt sensitive files, which may result in a denial of service. Other attacks may also be possible. |
Descriptionemesenelib/ProfileManager.py in emesene before 1.6.2 allows local users to overwrite arbitrary files via a symlink attack on the emsnpic temporary file. (CVE-2010-2053) |
Affected Productsemesene versions prior to 1.6.2 |
Recommended ActionsFedora has issued updated packages to fix this vulnerability. Refer to the following Fedora security advisory FEDORA-2010-9692 for more information about the vulnerability and obtaining patches. |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2010-2053 |
