Unrated severityNVD Advisory· Published Mar 4, 2009· Updated Jun 16, 2026
CVE-2008-6398
CVE-2008-6398
Description
sng_regress in SNG 1.0.2 allows local users to overwrite arbitrary files via a symlink attack on the (1) /tmp/recompiled$$.png, (2) /tmp/decompiled$$.sng, and (3) /tmp/canonicalized$$.sng temporary files.
Affected products
2- cpe:2.3:a:eric_raymond:sng:1.0.2:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.