Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-2851

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2005-2851
Last Modified 05 Sep 2008 04:52:50
Published 08 Sep 2005 06:03:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-2851

Summary

smb4k 0.4 and other versions before 0.6.3 allows local users to read sensitive files via a symlink attack on the (1) smb4k.tmp or (2) sudoers temporary files.

Vulnerable Systems

Application

  • Smb4k 0.4

  • Smb4k 0.5

  • Smb4k 0.6


References

BID - 14756

MANDRIVA - MDKSA-2005:157

CONFIRM - http://smb4k.berlios.de/

GENTOO - GLSA-200511-15

SECUNIA - 17636

SECUNIA - 16724


Last Updated: 27 May 2016 10:40:40