Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In FlightGear before 2017.2.1, the FGCommand interface allows overwriting any file the user has write access to, but not with arbitrary data: only with the contents of a FlightGear flightplan (XML). A resource such as a malicious third-party aircraft could exploit this to damage files belonging to the user. Both this issue and CVE-2016-9956 are directory traversal vulnerabilities in Autopilot/route_mgr.cxx - this one exists because of an incomplete fix for CVE-2016-9956.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
FlightGear 安全漏洞
Vulnerability Description
FlightGear是一款开源的多平台飞行模拟器。主要目标是为学术科研领域创造一个尖端的飞行模拟器框架,也可拓展到飞行训练、飞行仿真、模拟飞行游戏等方面。 FlightGear 2017.2.1之前的版本中的FGCommand界面存在安全漏洞。攻击者可利用该漏洞损坏文件。
CVSS Information
N/A
Vulnerability Type
N/A