CVE-2008-5843

{"id": "CVE-2008-5843", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.6, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": true, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": true, "userInteractionRequired": false}]}, "published": "2009-01-05T20:30:02.280", "references": [{"url": "http://openwall.com/lists/oss-security/2008/12/28/3", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/34312", "source": "cve@mitre.org"}, {"url": "https://bugs.gentoo.org/show_bug.cgi?id=252734", "source": "cve@mitre.org"}, {"url": "https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00484.html", "source": "cve@mitre.org"}, {"url": "https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00488.html", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Multiple untrusted search path vulnerabilities in pdfjam allow local users to gain privileges via a Trojan horse program in (1) the current working directory or (2) /var/tmp, related to the (a) pdf90, (b) pdfjoin, and (c) pdfnup scripts."}, {"lang": "es", "value": "M\u00faltiples vulnerabilidades de b\u00fasqueda en ruta no confiable en pdfjam que permite a usuarios locales ganar privilegios a trav\u00e9s de un Troyano en (1) el directorio actual de trabajo o (2) /var/tmp, relacionado con los scripts(a) pdf90, (b) pdfjoin, y (c) pdfnup."}], "lastModified": "2009-03-20T05:52:13.530", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:pdfjam:pdfjam:_nil_:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C6692CD0-700F-4E2B-82EF-C94155B95D08"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}