Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-1944

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2005-1944
Last Modified 05 Sep 2008 04:50:29
Published 09 Jun 2005 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-1944

Summary

xmysqladmin 1.0 and earlier allows local users to delete arbitrary files via a symlink attack on a database backup file in /tmp.

Vulnerable Systems

Application

  • Xmysqladmin 1.0


References

SECUNIA - 15635

BUGTRAQ - 20050609 xmysqladmin insecure temporary file creation

CONFIRM - http://bugs.gentoo.org/show_bug.cgi?id=93792

MISC - http://www.zataz.net/adviso/xmysqladmin-05292005.txt

SECTRACK - 1014172


Last Updated: 27 May 2016 10:40:20