CVE-2008-2266

NONE EPSS 24.0%
Published May 16, 200818y ago · Modified Jun 16, 20262w ago
Find Similar
Published May 16, 2008 18y ago
Last Modified Jun 16, 2026 2w ago

Description

uulib/uunconc.c in UUDeview 0.5.20, as used in nzbget before 0.3.0 and possibly other products, allows local users to overwrite arbitrary files via a symlink attack on a temporary filename generated by the tempnam function. NOTE: this may be a CVE-2004-2265 regression.

Threat Intelligence

EPSS Exploit Probability
24.0% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-59

Affected Products 7

VendorProductVersionRange
nzbgetnzbget* ≤0.2.2
nzbgetnzbget0.1.0aany
nzbgetnzbget0.1.1any
nzbgetnzbget0.1.2any
nzbgetnzbget0.2.0any
nzbgetnzbget0.2.1any
uudeviewuudeview0.5.20any

References 8

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.