CVE-2010-2053
emesene < 1.6.2 - Arbitrary File Overwrite via Symlink Attack on Temporary File
Title source: llmDescription
emesenelib/ProfileManager.py in emesene before 1.6.2 allows local users to overwrite arbitrary files via a symlink attack on the emsnpic temporary file.
References (12)
Core 12
Core References
Mailing List, Third Party Advisory vendor-advisory
x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2010-June/042699.html
Mailing List, Third Party Advisory vendor-advisory
x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2010-June/042725.html
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/39945
Mailing List mailing-list
x_refsource_mlist
http://marc.info/?l=oss-security&m=127514641525366&w=2
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/40115
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/59045
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/40455
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2010/1423
Mailing List, Third Party Advisory vendor-advisory
x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2010-June/042683.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/65018
Patch x_refsource_confirm
http://forum.emesene.org/index.php?topic=3441.0
Various Sources x_refsource_confirm
http://www.emesene.org/
Scores
EPSS
0.0035
EPSS Percentile
26.4%
Details
CWE
CWE-59
Status
published
Products (6)
emesene/emesene
1.0
emesene/emesene
1.0.1
emesene/emesene
1.5
emesene/emesene
1.5.1
emesene/emesene
1.6
emesene/emesene
< 1.6.1
Published
Jun 07, 2010
Tracked Since
Feb 18, 2026