CVE-2009-1215
EPSS 0.09%
Description
Race condition in GNU screen 4.0.3 allows local users to create or overwrite arbitrary files via a symlink attack on the /tmp/screen-exchange temporary file.
How to fix CVE-2009-1215
To remediate CVE-2009-1215, upgrade the affected package to a fixed version below.
- Debian/screen—upgrade to 4.0.3-13 or later
Is CVE-2009-1215 being exploited?
Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 4.0.3-13