Vulnerabilities > Debian > Syncevolution > Low
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2014-01-28 | CVE-2014-1639 | Link Following vulnerability in Debian Syncevolution syncevo/installcheck-local.sh in syncevolution before 1.3.99.7 uses mktemp to create a safe temporary file but appends a suffix to the original filename and writes to this new filename, which allows local users to overwrite arbitrary files via a symlink attack on the new filename. | 3.3 |