๐ CVE-2015-5287 | Automatic Bug Reporting Tool up to 2.7.0 abrt-hook-ccpp abrt-hax-coredump link following (ID 154592 / BID-78137)
๐ก Newskategorie: Sicherheitslรผcken
๐ Quelle: vuldb.com
A vulnerability classified as problematic was found in Automatic Bug Reporting Tool up to 2.7.0. Affected by this vulnerability is an unknown functionality of the file /var/tmp/abrt/abrt-hax-coredump of the component abrt-hook-ccpp. The manipulation leads to link following. This vulnerability is known as CVE-2015-5287. The attack needs to be approached locally. Furthermore, there is an exploit available. It is recommended to upgrade the affected component. ...