CVE-2008-0673

Publication date 12 February 2008

Last updated 24 July 2024


Ubuntu priority

TinTin++ 1.97.9 and WinTin++ 1.97.9 open files on the basis of an inbound file-transfer request, before the user has an opportunity to decline the request, which allows remote attackers to truncate arbitrary files in the top level of a home directory.

Status

Package Ubuntu Release Status
tintin++ 9.10 karmic
Fixed 1.97.9-2
9.04 jaunty
Fixed 1.97.9-2
8.10 intrepid
Fixed 1.97.9-2
8.04 LTS hardy
Fixed 1.97.9-2
7.10 gutsy Ignored end of life, was needed
7.04 feisty Ignored end of life, was needed
6.10 edgy Ignored end of life, was needed
6.06 LTS dapper Ignored end of life