CVE-2005-4691
Published Dec 31, 2005
Last updated 16 years ago
Overview
- Description
- imake in NetBSD before 2.0.3, NetBSD-current before 12 September 2005, certain versions of X.Org, and certain versions of XFree86 allows local users to overwrite arbitrary files via a symlink attack on the temporary file for the file.0 target, which is used for a pre-formatted manual page.
- Source
- cve@mitre.org
- NVD status
- Analyzed
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 2.1
- Impact score
- 2.9
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:N/I:P/A:N
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:netbsd:netbsd:1.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "28A10F5A-067E-4DD8-B585-ABCD6F6B324E"
},
{
"criteria": "cpe:2.3:o:netbsd:netbsd:1.6:beta:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9DDC444D-E763-4685-97F8-A027DF6F804D"
},
{
"criteria": "cpe:2.3:o:netbsd:netbsd:1.6.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "249FA642-3732-4654-88CB-3F1D19A5860A"
},
{
"criteria": "cpe:2.3:o:netbsd:netbsd:1.6.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5071CA39-65B3-4AFB-8898-21819E57A084"
},
{
"criteria": "cpe:2.3:o:netbsd:netbsd:2.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A3C3F588-98DA-4F6F-A083-2B9EE534C561"
},
{
"criteria": "cpe:2.3:o:netbsd:netbsd:2.0.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1C2ED81B-8DA2-46D0-AE24-C61BF8E78AE9"
},
{
"criteria": "cpe:2.3:o:netbsd:netbsd:2.0.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D18C95A3-15E3-41B8-AC28-ACEA57021E24"
}
],
"operator": "OR"
}
]
}
]