Ampache Improper Link Resolution Before File Access (Link Following) Vulnerability - CVE-2008-3929 - Vulnerability Database

Ampache Improper Link Resolution Before File Access (Link Following) Vulnerability - CVE-2008-3929

High
Reference: CVE-2008-3929
Title: Ampache Improper Link Resolution Before File Access (Link Following) Vulnerability
Overview:

gather-messages.sh in Ampache 3.4.1 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/filelist temporary file.