Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-1110

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2004-1110
Last Modified 05 Sep 2008 04:40:24
Published 10 Jan 2005 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2004-1110

Summary

The mtink status monitor before 1.0.5 for Epson printers allows local users to overwrite arbitrary files via a symlink attack on the epson temporary file.

Vulnerable Systems

Operating System

  • Gentoo Linux

Application

  • Jean-jacques Sarton Mtink 0.9.32

  • Jean-jacques Sarton Mtink 0.9.33

  • Jean-jacques Sarton Mtink 0.9.52

  • Jean-jacques Sarton Mtink 0.9.53

  • Jean-jacques Sarton Mtink 1.0.4


References

BID - 11640

GENTOO - GLSA-200411-17

XF - mtink-tmp-file-symlink(18011)

CONFIRM - http://bugs.gentoo.org/show_bug.cgi?id=70310


Last Updated: 27 May 2016 10:38:54