Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
klprfax_filter in KDE2 KDEUtils allows local users to overwrite arbitrary files via a symlink attack on the klprfax.filter temporary file.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
KDE2 klprfax_filter以不安全的方式创建临时文件漏洞
Vulnerability Description
KDE2是一个免费的,开放源码的X Window系统窗口管理器,它由KDE项目组维护。 klprfax_filter是KDE2包括的一个实现传真功能的程序。 klprfax_filter在执行过程时创建临时文件存在问题,可能使本地攻击者访问到其他用户的文件。 klprfax_filter在执行过程中创建临时文件klprfax.filter时并不检查它是否已经存在,这样本地攻击者就可以通过创建符号连接指向其他用户有权限写的文件,当那个用户运行klprfax_filter时,则指向的文件就会被覆盖。如果roo
CVSS Information
N/A
Vulnerability Type
N/A