OSSP mm library (libmm) before 1.2.0 allows the local Apache user to gain privileges via temporary files, possibly via a symbolic link attack.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| ossp | mm | 1.0.12 |
| ossp | mm | 1.0.1 |
| ossp | mm | 1.0.2 |
| ossp | mm | 1.0.4 |
| ossp | mm | 1.0.5 |
| ossp | mm | 1.1.2 |
| ossp | mm | 1.1.3 |
| ossp | mm | 1.0.6 |
| ossp | mm | 1.1.0 |
| ossp | mm | 1.0.8 |
| ossp | mm | 1.0.0 |
| ossp | mm | 1.0.7 |
| ossp | mm | 1.0.9 |
| ossp | mm | 1.1.1 |
| ossp | mm | 1.0.10 |
| ossp | mm | 1.0.3 |
| ossp | mm | 1.0.11 |