CVE-2008-4191

Impact:: Low
Public Date:: 2008-08-24

Bugzilla:: 460435: CVE-2008-4191 emacspeak: Insecure auxiliary /tmp file usage (symlink attack possible)

The MITRE CVE dictionary describes this issue as:

extract-table.pl in Emacspeak 26 and 28 allows local users to overwrite arbitrary files via a symlink attack on the extract-table.csv temporary file.

Find out more about CVE-2008-4191 from the MITRE CVE dictionary dictionary and NIST NVD.

Statement

Red Hat Product Security has rated this issue as having Low security impact. This issue is not currently planned to be addressed in future updates. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.

Affected Packages State

Platform	Package	State
Red Hat Enterprise Linux 5	emacspeak	Will not fix
Red Hat Enterprise Linux 4	emacspeak	Will not fix

Last Modified 2018-08-18T13:20:26+00:00

Log in to Your Red Hat Account

Red Hat Account

Customer Portal

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

JBoss Development and Management

JBoss Integration and Automation

Mobile

Services

Tools

Red Hat Product Security Center

Security Updates

Resources

Customer Portal Community

Customer Events

Stories

CVE-2008-4191

Statement

Affected Packages State