Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0036

Overview

Vulnerability Score 6.2 6.2
CVE Id CVE-2003-0036
Last Modified 10 Sep 2008 03:17:26
Published 07 Feb 2003 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity HIGH
Authentication NONE

CVE-2003-0036

Summary

ml85p, as included in the printer-drivers package for Mandrake Linux, allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable filenames of the form "mlg85p%d".

Vulnerable Systems

Application

  • Rildo Pragana Ml85p


References

MISC - http://www.idefense.com/advisory/01.21.03.txt

VULNWATCH - 20030121 iDEFENSE Security Advisory 01.21.03: Buffer Overflows in Mandrake Linux printer-drivers Package

SECTRACK - 1005959

MANDRAKE - MDKSA-2003:010


Last Updated: 27 May 2016 10:37:45