scrollkeeper-get-cl in ScrollKeeper 0.3 to 0.3.11 allows local users to create and overwrite files via a symlink attack on the scrollkeeper-tempfile.x temporary files.
CVSS 2.0
Severity: LOW
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| dan_mueth | scrollkeeper | 0.3.10 |
| dan_mueth | scrollkeeper | 0.3.3 |
| dan_mueth | scrollkeeper | 0.3 |
| dan_mueth | scrollkeeper | 0.3.6 |
| dan_mueth | scrollkeeper | 0.3.8 |
| dan_mueth | scrollkeeper | 0.3.4 |
| dan_mueth | scrollkeeper | 0.3.5 |
| dan_mueth | scrollkeeper | 0.3.9 |
| dan_mueth | scrollkeeper | 0.3.7 |
| dan_mueth | scrollkeeper | 0.3.11 |
| dan_mueth | scrollkeeper | 0.3.1 |