CVE-2005-2449

Published Aug 3, 2005

Last updated 6 hours ago

CVSS info 1.2

Overview

Description: Race condition in sandbox before 1.2.11 allows local users to create or overwrite arbitrary files via symlink attack on sandboxpids.tmp.
Source: cve@mitre.org
NVD status: Deferred

Risk scores

CVSS 2.0

Type: Primary
Base score: 1.2
Impact score: 2.9
Exploitability score: 1.9
Vector string: AV:L/AC:H/Au:N/C:N/I:P/A:N

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:sandbox:sandbox:1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E4C04E95-48E0-4F99-9FF6-19B003C710FD"
          },
          {
            "criteria": "cpe:2.3:a:sandbox:sandbox:1.2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "02C0FDB2-3343-4082-ACA4-9A033E090E3F"
          },
          {
            "criteria": "cpe:2.3:a:sandbox:sandbox:1.2.1_r3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0B9B4B07-AD80-46CB-BF21-D11CDB753630"
          },
          {
            "criteria": "cpe:2.3:a:sandbox:sandbox:1.2.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A65A1840-BB99-42BE-A2D7-BDDF5D1B6F20"
          },
          {
            "criteria": "cpe:2.3:a:sandbox:sandbox:1.2.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CE9BC0E0-8D71-42DF-A4AE-FB2C502CB7E2"
          },
          {
            "criteria": "cpe:2.3:a:sandbox:sandbox:1.2.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "53182CAA-9474-4469-9211-36EA012537D9"
          },
          {
            "criteria": "cpe:2.3:a:sandbox:sandbox:1.2.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E2A4AC13-F885-400D-B555-D7C6647F624A"
          },
          {
            "criteria": "cpe:2.3:a:sandbox:sandbox:1.2.5_r1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "74B20DC9-DE75-4DFF-8BA9-709AF7BA1834"
          },
          {
            "criteria": "cpe:2.3:a:sandbox:sandbox:1.2.5_r2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "34A0ABB0-DA9F-4DC8-B420-E7924C91EB1F"
          },
          {
            "criteria": "cpe:2.3:a:sandbox:sandbox:1.2.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "822A133E-75A1-4517-84B2-7C01FCA6F8DD"
          },
          {
            "criteria": "cpe:2.3:a:sandbox:sandbox:1.2.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8DF8BE44-95A0-4D2A-9FEB-D914C7BEF4C1"
          },
          {
            "criteria": "cpe:2.3:a:sandbox:sandbox:1.2.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "064760A7-4A9F-4260-9F19-EE8D6C2B5DDB"
          },
          {
            "criteria": "cpe:2.3:a:sandbox:sandbox:1.2.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "286F256F-94DD-4499-8E5F-F68B50AA6B8A"
          },
          {
            "criteria": "cpe:2.3:a:sandbox:sandbox:1.2.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D6E8BF5B-F57C-4E87-95B6-D3655920AC0F"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References