Unrated severityNVD Advisory· Published Dec 22, 2008· Updated Apr 23, 2026

CVE-2008-5703

Description

gpsdrive (aka gpsdrive-scripts) 2.10~pre4 allows local users to overwrite arbitrary files via a symlink attack on the (a) /tmp/.smswatch or (b) /tmp/gpsdrivepos temporary file, related to (1) examples/gpssmswatch and (2) src/splash.c, different vectors than CVE-2008-4959 and CVE-2008-5380.

Affected products

Gpsdrive/Gpsdrive4 versions
cpe:2.3:a:gpsdrive:gpsdrive:1.32:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:gpsdrive:gpsdrive:1.32:*:*:*:*:*:*:*
- cpe:2.3:a:gpsdrive:gpsdrive:1.33:*:*:*:*:*:*:*
- cpe:2.3:a:gpsdrive:gpsdrive:2.09:*:*:*:*:*:*:*
- cpe:2.3:a:gpsdrive:gpsdrive:*:pre2:*:*:*:*:*:*range: <=2.10

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

bugs.debian.org/cgi-bin/bugreport.cginvd
openwall.com/lists/oss-security/2008/12/17/15nvd
secunia.com/advisories/31694nvd
secunia.com/advisories/33825nvd
sourceforge.net/tracker/index.phpnvd
www.securityfocus.com/bid/32887nvd
www.redhat.com/archives/fedora-package-announce/2009-February/msg00187.htmlnvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000