Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-2300

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2005-2300
Last Modified 05 Sep 2008 04:51:24
Published 19 Jul 2005 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-2300

Summary

Skype 1.1.0.20 and earlier allows local users to overwrite arbitrary files via a symlink attack on the skype_profile.jpg temporary file.

Vulnerable Systems

Application

  • Skype Technologies Skype 1.1.0.20


References

MISC - http://www.zone-h.org/advisories/read/id=7808

BUGTRAQ - 20050716 [ZH2005-16SA] Insecure temporary file creation in Skype for Linux

SECUNIA - 16105


Last Updated: 27 May 2016 10:40:28