mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-06 02:31:38 +00:00
852 B
852 B
CVE-2016-6153
Description
os_unix.c in SQLite before 3.13.0 improperly implements the temporary directory search algorithm, which might allow local users to obtain sensitive information, cause a denial of service (application crash), or have unspecified other impact by leveraging use of the current working directory for temporary files.
POC
Reference
- https://www.korelogic.com/Resources/Advisories/KL-001-2016-003.txt
- https://www.tenable.com/security/tns-2016-20