Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0160

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2004-0160
Last Modified 05 Sep 2008 04:37:41
Published 29 Mar 2004 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2004-0160

Summary

Synaesthesia 2.2 and earlier allows local users to execute arbitrary code via a symlink attack on the configuration file.

Vulnerable Systems

Application

  • Synaesthesia 2.1.0

  • Synaesthesia 2.1.1

  • Synaesthesia 2.1.2

  • Synaesthesia 2.2


References

XF - synaesthesia-configuration-symlink-attack(15279)

BID - 9713

DEBIAN - DSA-446


Last Updated: 27 May 2016 10:38:30