VYPR

Vdr

by Vdr

CVEs (3)

  • CVE-2010-3387Oct 20, 2010
    risk 0.00cvss epss 0.00

    vdrleaktest in Video Disk Recorder (VDR) 1.6.0 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory. NOTE: a third party disputes this issue because the script…

  • CVE-2008-4985Nov 6, 2008
    risk 0.00cvss epss 0.00

    vdrleaktest in Video Disk Recorder (aka vdr-dbg or vdr) 1.6.0 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/memleaktest.log temporary file.

  • CVE-2005-0071May 2, 2005
    risk 0.00cvss epss 0.01

    vdr before 1.2.6 does not securely create files, which allows attackers to overwrite arbitrary files.