Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0279

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2004-0279
Last Modified 05 Sep 2008 04:38:00
Published 23 Nov 2004 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2004-0279

Summary

AIM Sniff (aimSniff.pl) 0.9b allows local users to overwrite arbitrary files via a symlink attack on /tmp/AS.log.

Vulnerable Systems

Application

  • Aim Sniff 0.6

  • Aim Sniff 0.7

  • Aim Sniff 0.8

  • Aim Sniff 0.9

  • Aim Sniff 0.9b


References

BID - 9653

BUGTRAQ - 20040212 aimSniff.pl file "deletion" (local)

XF - aim-sniff-symlink(15199)


Last Updated: 27 May 2016 10:38:32