CVE-2008-5370
EPSS 0.02%
Description
pvpgn-support-installer in pvpgn 1.8.1 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/pvpgn-support-1.0.tar.gz temporary file.
How to fix CVE-2008-5370
To remediate CVE-2008-5370, upgrade the affected package to a fixed version below.
- Debian/pvpgn—upgrade to 1.8.1-2 or later
Is CVE-2008-5370 being exploited?
Low — EPSS is 0.0%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 1.8.1-2