{
  "modified": "2025-08-09T19:01:27Z",
  "published": "2008-11-18T16:00:01Z",
  "id": "CVE-2008-5135",
  "details": "os-prober in os-prober 1.17 allows local users to overwrite arbitrary files via a symlink attack on the (1) /tmp/mounted-map or (2) /tmp/raided-map temporary file.  NOTE: the vendor disputes this issue, stating \"the insecure code path should only ever run inside a d-i environment, which has no non-root users.",
  "references": [
    {
      "type": "WEB",
      "url": "http://lists.debian.org/debian-devel/2008/08/msg00285.html"
    },
    {
      "type": "WEB",
      "url": "http://lists.debian.org/debian-devel/2008/08/msg00296.html"
    }
  ],
  "database_specific": {
    "isDisputed": true
  }
}