Red Hat Bugzilla – Bug 469883
CVE-2008-4909 crossfire-maps: insecure temporary file use in combine.pl
Last modified: 2016-03-04 07:12:17 EST
Common Vulnerabilities and Exposures assigned an identifier CVE-2008-4909 to the following vulnerability:
maps/Info/combine.pl in CrossFire crossfire-maps 1.11.0 allows local
users to overwrite arbitrary files via a symlink attack on a temporary
The Debian bug report indicates that maps/Info/combine.pl is not used by default and is provided solely as a utility for possible use. However, this bug report is two years old, so I'm filing a Fedora tracker as it has never been addressed.