Ampache Improper Link Resolution Before File Access (Link Following) Vulnerability - CVE-2008-3929 - Vulnerability Database

Ampache Improper Link Resolution Before File Access (Link Following) Vulnerability - CVE-2008-3929

High

Reference: CVE-2008-3929

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2008-3929

Title: Ampache Improper Link Resolution Before File Access (Link Following) Vulnerability

Overview:

gather-messages.sh in Ampache 3.4.1 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/filelist temporary file.