CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:N/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
5.1%
lisp/emacs-lisp/find-gc.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a temporary file under /tmp/esrc/.
Vendor | Product | Version | CPE |
---|---|---|---|
gnu | emacs | * | cpe:2.3:a:gnu:emacs:*:*:*:*:*:*:*:* |
gnu | emacs | 20.0 | cpe:2.3:a:gnu:emacs:20.0:*:*:*:*:*:*:* |
gnu | emacs | 20.1 | cpe:2.3:a:gnu:emacs:20.1:*:*:*:*:*:*:* |
gnu | emacs | 20.2 | cpe:2.3:a:gnu:emacs:20.2:*:*:*:*:*:*:* |
gnu | emacs | 20.3 | cpe:2.3:a:gnu:emacs:20.3:*:*:*:*:*:*:* |
gnu | emacs | 20.4 | cpe:2.3:a:gnu:emacs:20.4:*:*:*:*:*:*:* |
gnu | emacs | 20.5 | cpe:2.3:a:gnu:emacs:20.5:*:*:*:*:*:*:* |
gnu | emacs | 20.6 | cpe:2.3:a:gnu:emacs:20.6:*:*:*:*:*:*:* |
gnu | emacs | 20.7 | cpe:2.3:a:gnu:emacs:20.7:*:*:*:*:*:*:* |
gnu | emacs | 21 | cpe:2.3:a:gnu:emacs:21:*:*:*:*:*:*:* |