Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-1336

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2004-1336
Last Modified 05 Sep 2008 04:41:02
Published 23 Dec 2004 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2004-1336

Summary

The xdvizilla script in tetex-bin 2.0.2 creates temporary files with predictable file names, which allows local users to overwrite arbitrary files via a symlink attack.

Vulnerable Systems

Operating System

  • Gentoo Linux

Application

  • Debian Tetex-bin 2.0.2


References

XF - xdvizilla-symlink(18708)

BID - 12100

BUGTRAQ - 20041223 [USN-51-1] teTeX auxiliary script vulnerability

CONFIRM - http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=286370


Last Updated: 27 May 2016 10:39:00