romload.c in DGen Emulator 1.23 and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files during decompression of (1) gzip or (2) bzip ROM files.
CVSS 2.0
Severity: LOW
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| dgen | emulator | 1.23 |
| dgen | emulator | 1.17 |
| dgen | emulator | 1.18 |
| dgen | emulator | 1.20_a |
| dgen | emulator | 1.20 |
| dgen | emulator | 1.15 |
| dgen | emulator | 1.21 |
| dgen | emulator | 1.16 |
| debian | debian_linux | 3.0 |
| dgen | emulator | 1.22 |