CVE-2014-0177CVE-2014-0177

Affected configuration(s):

cpe:/a:hub_project:hub:1.12.0

Date published: 2014-05-27T10:55:10.540-04:00

Date last modified: 2014-05-28T13:51:19.880-04:00

CVSS Score: 3.6

Principal attack vector: LOCAL

Complexity:  LOW

Reference URL: https://github.com/github/hub/commit/016ec99d25b1cb83cb4367e541177aa431beb600

Summary: The am function in lib/hub/commands.rb in hub before 1.12.1 allows local users to overwrite arbitrary files via a symlink attack on a temporary patch file.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.