CVE-2008-3329 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	9.3 UNKNOWN	NETWORK	MEDIUM		AV:N/AC:M/Au:N/C:C/I:C/A:C
mitre	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 40%

Vendor	Product	Version
twibright	links	𝑥 ≤ 2.1
twibright	links	0.80
twibright	links	0.81:pre1
twibright	links	0.81:pre2
twibright	links	0.81:pre3
twibright	links	0.90
twibright	links	0.90:pre1
twibright	links	0.90:pre2
twibright	links	0.90:pre3
twibright	links	0.91
twibright	links	0.92
twibright	links	0.93
twibright	links	0.93:pre1
twibright	links	0.93:pre2
twibright	links	0.93:pre3
twibright	links	0.93:pre4
twibright	links	0.94
twibright	links	0.94:pre1
twibright	links	0.94:pre2
twibright	links	0.94:pre3
twibright	links	0.94:pre4
twibright	links	0.94:pre5
twibright	links	0.94:pre6
twibright	links	0.94:pre7
twibright	links	0.94:pre8
twibright	links	0.94:pre9
twibright	links	0.95
twibright	links	0.96
twibright	links	0.96:pre1
twibright	links	0.96:pre2
twibright	links	0.96:pre3
twibright	links	0.96:pre4
twibright	links	0.96:pre5
twibright	links	0.96:pre6
twibright	links	0.96:pre7
twibright	links	0.96:pre8
twibright	links	0.97
twibright	links	0.97:pre1
twibright	links	0.97:pre10
twibright	links	0.97:pre11
twibright	links	0.97:pre12
twibright	links	0.97:pre2
twibright	links	0.97:pre3
twibright	links	0.97:pre4
twibright	links	0.97:pre5
twibright	links	0.97:pre6
twibright	links	0.97:pre7
twibright	links	0.97:pre8
twibright	links	0.97:pre9
twibright	links	2.0
twibright	links	2.0:pre1
twibright	links	2.0:pre2
twibright	links	2.0:pre3
twibright	links	2.0:pre4
twibright	links	2.0:pre5
twibright	links	2.0:pre6
twibright	links	2.1:pre1
twibright	links	2.1:pre10
twibright	links	2.1:pre11
twibright	links	2.1:pre12
twibright	links	2.1:pre13
twibright	links	2.1:pre14
twibright	links	2.1:pre15
twibright	links	2.1:pre16
twibright	links	2.1:pre17
twibright	links	2.1:pre18
twibright	links	2.1:pre19
twibright	links	2.1:pre2
twibright	links	2.1:pre20
twibright	links	2.1:pre21
twibright	links	2.1:pre22
twibright	links	2.1:pre23
twibright	links	2.1:pre24
twibright	links	2.1:pre25
twibright	links	2.1:pre26
twibright	links	2.1:pre27
twibright	links	2.1:pre28
twibright	links	2.1:pre29
twibright	links	2.1:pre3
twibright	links	2.1:pre30
twibright	links	2.1:pre31
twibright	links	2.1:pre32
twibright	links	2.1:pre33
twibright	links	2.1:pre34
twibright	links	2.1:pre35
twibright	links	2.1:pre36
twibright	links	2.1:pre4
twibright	links	2.1:pre5
twibright	links	2.1:pre6
twibright	links	2.1:pre7
twibright	links	2.1:pre8
twibright	links	2.1:pre9

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

links2

bullseye	2.21-1 fixed
etch	no-dsa
bookworm	2.28-1 fixed
sid	2.29-1 fixed
trixie	2.29-1 fixed

Ubuntu Releases

Ubuntu Product

Codename

links

oneiric	dne
natty	dne
maverick	dne
lucid	dne
karmic	dne
jaunty	dne
intrepid	dne
hardy	dne
gutsy	ignored
feisty	ignored
dapper	ignored

links2

oneiric	not-affected
natty	not-affected
maverick	not-affected
lucid	not-affected
karmic	not-affected
jaunty	not-affected
intrepid	not-affected
hardy	ignored
gutsy	ignored
feisty	ignored
dapper	ignored

Common Weakness Enumeration

CWE-59 - Improper Link Resolution Before File Access ('Link Following')
The software attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.

References

http://links.twibright.com/download/ChangeLog

http://www.securityfocus.com/bid/30422

https://exchange.xforce.ibmcloud.com/vulnerabilities/44035

http://links.twibright.com/download/ChangeLog

http://www.securityfocus.com/bid/30422

https://exchange.xforce.ibmcloud.com/vulnerabilities/44035