Launchpad.net

CVE 2008-4477

alert.d/test.alert in mon 0.99.2 allows local users to overwrite arbitrary files via a symlink attack on the test.alert.log temporary file.

CVE-2008-4477 (Candidate) is related to these bugs:

Bug #285100: [CVE-2008-4477] - mon 0.99.2 allows local users to overwrite arbitrary files via a symlink attack

		In	Importance	Status
285100	[CVE-2008-4477] - mon 0.99.2 allows local users to overwrite arbitrary files via a symlink attack	mon (Ubuntu)	Undecided	Fix Released
285100	[CVE-2008-4477] - mon 0.99.2 allows local users to overwrite arbitrary files via a symlink attack	mon (Ubuntu Dapper)	Undecided	Fix Released
285100	[CVE-2008-4477] - mon 0.99.2 allows local users to overwrite arbitrary files via a symlink attack	mon (Ubuntu Gutsy)	Undecided	Fix Released
285100	[CVE-2008-4477] - mon 0.99.2 allows local users to overwrite arbitrary files via a symlink attack	mon (Ubuntu Hardy)	Undecided	Fix Released
285100	[CVE-2008-4477] - mon 0.99.2 allows local users to overwrite arbitrary files via a symlink attack	mon (Ubuntu Intrepid)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.