CVE-2004-0256

Published Nov 23, 2004

Last updated 7 years ago

CVSS info 2.1

Overview

Description: GNU libtool before 1.5.2, during compile time, allows local users to overwrite arbitrary files via a symlink attack on libtool directories in /tmp.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 2.1
Impact score: 2.9
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:N/I:P/A:N

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:gnu:libtool:1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D5215486-F7EB-4A4F-B2FD-7FD7A0622BC6"
          },
          {
            "criteria": "cpe:2.3:a:gnu:libtool:1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7A155124-93FB-4BF4-921C-A725659B5FCF"
          },
          {
            "criteria": "cpe:2.3:a:gnu:libtool:1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3913A8C6-BB84-4F98-8E15-89F46DD97D27"
          },
          {
            "criteria": "cpe:2.3:a:gnu:libtool:1.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "53078611-5F8C-4772-B02C-49385817C565"
          },
          {
            "criteria": "cpe:2.3:a:gnu:libtool:1.3.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "011AFF50-B79D-49A0-9592-6DC0F3B035CA"
          },
          {
            "criteria": "cpe:2.3:a:gnu:libtool:1.3.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6169ACF4-8F2C-4FD8-9C14-884D7DE1C308"
          },
          {
            "criteria": "cpe:2.3:a:gnu:libtool:1.3.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "38A4AF7D-59DE-4754-82EF-184FC016ACCD"
          },
          {
            "criteria": "cpe:2.3:a:gnu:libtool:1.3.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A94FD25D-ED17-4765-92C5-2A6CDADD4EC0"
          },
          {
            "criteria": "cpe:2.3:a:gnu:libtool:1.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "66DD96CF-883A-4A1F-BC96-9961251CD98F"
          },
          {
            "criteria": "cpe:2.3:a:gnu:libtool:1.4.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7DC9BB6C-3B55-49E6-A5DF-DBF8CF867598"
          },
          {
            "criteria": "cpe:2.3:a:gnu:libtool:1.4.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "06C62528-7FE5-4281-9A65-351F1B64E2C8"
          },
          {
            "criteria": "cpe:2.3:a:gnu:libtool:1.4.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "251BD921-207F-4BA5-BD91-A73E6300328A"
          },
          {
            "criteria": "cpe:2.3:a:gnu:libtool:1.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0418D690-1347-49A7-9962-BA70DA7858E7"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References