Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-0072

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2005-0072
Last Modified 10 Sep 2008 03:34:51
Published 24 Jan 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-0072

Summary

zhcon before 0.2 does not drop privileges before reading a user configuration file, which allows local users to read arbitrary files.

Vulnerable Systems

Application

  • Ejoy And Hu Yong Zhcon 0.2


References

DEBIAN - DSA-655

XF - zhcon-information-disclosure(19045)

BID - 12343

MANDRAKE - MDKSA-2005:012

SECTRACK - 1012977

SECUNIA - 13987

SECUNIA - 13982

SECUNIA - 13977


Last Updated: 27 May 2016 10:39:39