← Back

Karakas Online

karakas-online

2 CVEs • 1 product

Products (1)

Click to collapse
Toggle
Chm2pdf
chm2pdf
2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2008-5299
1Karakas Online
1Chm2pdf
Apr 23, 2026
Dec 1, 2008
N/A· v4
N/A· v3
6.9 MEDIUM· v2
chm2pdf 0.9 allows user-assisted local users to delete arbitrary files via a symlink attack on .chm files in the (1) /tmp/chm2pdf/work or (2) /tmp/chm2pdf/orig temporary directories.
CVE-2008-5298
1Karakas Online
1Chm2pdf
Apr 23, 2026
Dec 1, 2008
N/A· v4
N/A· v3
2.1 LOW· v2
chm2pdf 0.9 uses temporary files in directories with fixed names, which allows local users to cause a denial of service (chm2pdf failure) of other users by creating those directories ahead of time.