CVE-2011-5146
Bokken < 1.6 and 1.5-x < 1.5-3 - Arbitrary File Overwrite via Symlink Attack on /tmp/graph.dot
Title source: llmDescription
Bokken before 1.6 and 1.5-x before 1.5-3 for Debian allows local users to overwrite arbitrary files via a symlink attack on /tmp/graph.dot.
References (5)
Core 5
Core References
Patch x_refsource_confirm
http://inguma.eu/projects/bokken/repository/revisions/56894084b0ec
Issue Tracking x_refsource_confirm
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=651931
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/47252
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/77700
Various Sources x_refsource_confirm
http://ingumadev.blogspot.com/2012/01/bokken-16-is-more-stable-and-easier-to.html
Scores
EPSS
0.0031
EPSS Percentile
22.8%
Details
CWE
CWE-59
Status
published
Products (1)
ingumadev/bokken
< 1.5
Published
Aug 31, 2012
Tracked Since
Feb 18, 2026