Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-2944

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2005-2944
Last Modified 05 Sep 2008 04:53:02
Published 16 Sep 2005 04:03:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-2944

Summary

The perform_file_save function in GNOME Workstation Command Center (gwcc) 0.9.6 and earlier allows local users to create and overwrite arbitrary files via a symlink attack on the gwcc_out.txt temporary file.

Vulnerable Systems

Application

  • Brent Ely Gnome Workstation Command Center 0.9.6

  • Brent Ely Gnome Workstation Command Center 0.9.8


References

CONFIRM - http://bugs.gentoo.org/show_bug.cgi?id=104566

MISC - http://www.zataz.net/adviso/gwcc-09052005.txt

SECUNIA - 16833


Last Updated: 27 May 2016 10:40:40