The liece Emacs IRC client 2.0+0.20030527 and earlier creates temporary files insecurely, which could allow local users to overwrite arbitrary files as other users.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| daiki_ueno | liece_emacs_irc_client | * |
libfep 0.0.5 before 0.1.0 does not properly use UNIX domain sockets in the abstract namespace, which allows local users to gain privileges via unspecified vectors.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-264,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| daiki_ueno | libfep | 0.0.5 |
| daiki_ueno | libfep | 0.0.6 |
| daiki_ueno | libfep | 0.0.9 |
| daiki_ueno | libfep | 0.0.7 |
| daiki_ueno | libfep | 0.0.8 |