Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0193

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2003-0193
Last Modified 05 Sep 2008 04:33:43
Published 18 Aug 2004 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2003-0193

Summary

msxlsview.sh in xlsview for catdoc 0.91 and earlier allows local users to overwrite arbitrary files via a symlink attack on predictable temporary file names ("word$$.html").

Vulnerable Systems

Application

  • Catdoc 0.91


References

DEBIAN - DSA-575

XF - catdoc-xlsview-symlink(16335)

BID - 11560

OSVDB - 11193

SECUNIA - 13022

SECUNIA - 13021

CONFIRM - http://bugs.debian.org/cgi-bin/bugreport.cgi?archive=no&bug=183525


Last Updated: 27 May 2016 10:37:48