Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-1162

Overview

Vulnerability Score 3.7 3.7
CVE Id CVE-2000-1162
Last Modified 05 Sep 2008 04:22:48
Published 09 Jan 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity HIGH
Authentication NONE

CVE-2000-1162

Summary

ghostscript before 5.10-16 allows local users to overwrite files of other users via a symlink attack.

Vulnerable Systems

Application

  • Aladdin Enterprises Ghostscript 4.3

  • Aladdin Enterprises Ghostscript 5.10.10

  • Aladdin Enterprises Ghostscript 5.10.15

  • Aladdin Enterprises Ghostscript 5.50


References

BID - 1990

CALDERA - CSSA-2000-041

XF - ghostscript-sym-link

REDHAT - RHSA-2000:114

MANDRAKE - MDKSA-2000:074

DEBIAN - 20001123 ghostscript: symlink attack

CONECTIVA - CLSA-2000:343


Last Updated: 27 May 2016 10:36:03