CVE-2007-4631

QGit up to 2pre1 - Arbitrary File Write via Symlink Attack on Predictable Temporary Files

Title source: llm

Description

The DataLoader::doStart function in dataloader.cpp in QGit 1.5.6 and other versions up to 2pre1 allows local users to overwrite arbitrary files and execute arbitrary code via a symlink attack on temporary files with predictable filenames.

References (12)

Core 12

Core References

Issue Tracking x_refsource_misc

https://bugzilla.redhat.com/show_bug.cgi?id=268381

Patch x_refsource_confirm

http://sourceforge.net/project/shownotes.php?release_id=538002

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/26745

Third Party Advisory vendor-advisory x_refsource_gentoo

http://security.gentoo.org/glsa/glsa-200710-05.xml

Vendor Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2007/3107

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/26738

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/27098

Patch x_refsource_confirm

http://sourceforge.net/project/shownotes.php?release_id=538002&group_id=139897

Mailing List vendor-advisory x_refsource_fedora

http://fedoranews.org/updates/FEDORA-2007-210.shtml

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/36503

Patch vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/25618

Patch x_refsource_confirm

http://bugs.gentoo.org/show_bug.cgi?id=190697

Scores

EPSS 0.0045

EPSS Percentile 35.7%

Details

CWE

CWE-59

Status published

Products (1)

qgit/qgit 1.5.6_2pre1

Published Aug 31, 2007

Tracked Since Feb 18, 2026