CVE-2008-4908
CrossFire crossfire-maps 1.11.0 - Arbitrary File Overwrite via Symlink Attack on Temporary File
Title source: llmDescription
maps/Info/combine.pl in CrossFire crossfire-maps 1.11.0 allows local users to overwrite arbitrary files via a symlink attack on a temporary file.
References (4)
Core 4
Core References
Issue Tracking x_refsource_confirm
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=496358
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/32487
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/44841
Patch vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/30893
Scores
EPSS
0.0029
EPSS Percentile
20.6%
Details
CWE
CWE-59
Status
published
Products (1)
crossfire/crossfire
1.11.0
Published
Nov 04, 2008
Tracked Since
Feb 18, 2026