Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-3011

Overview

Vulnerability Score 1.2 1.2
CVE Id CVE-2005-3011
Last Modified 25 Jul 2011 12:00:00
Published 21 Sep 2005 04:03:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity HIGH
Authentication NONE

CVE-2005-3011

Summary

The sort_offline function for texindex in texinfo 4.8 and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files.

Vulnerable Systems

Application

  • Gnu Texinfo 4.8


References

VUPEN - ADV-2007-1939

VUPEN - ADV-2007-1267

CONFIRM - http://www.vmware.com/support/vi3/doc/esx-2559638-patch.html

CONFIRM - http://www.vmware.com/support/vi3/doc/esx-1121906-patch.html

UBUNTU - USN-194-1

BID - 14854

BUGTRAQ - 20070404 VMSA-2007-0003 VMware ESX 3.0.1 and 3.0.0 server security updates

REDHAT - RHSA-2006:0727

SUSE - SUSE-SR:2005:023

MANDRIVA - MDKSA-2005:175

GENTOO - GLSA-200510-04

DEBIAN - DSA-1219

SECTRACK - 1015468

SECTRACK - 1014992

SECUNIA - 25402

SECUNIA - 24788

SECUNIA - 23112

SECUNIA - 22929

SECUNIA - 18401

SECUNIA - 17215

SECUNIA - 17211

SECUNIA - 17093

SECUNIA - 17076

SECUNIA - 17070

SECUNIA - 16816

TRUSTIX - TSLSA-2005-0059

APPLE - APPLE-SA-2007-05-24

CONFIRM - http://docs.info.apple.com/article.html?artnum=305530

MISC - http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=328365

SGI - 20061101-01-P

FREEBSD - FreeBSD-SA-06:01

Related Patches

Apple 2007-05-24 Security Update 2007-005 V1.1 Mac OS X 10.4.9 (PPC)


Last Updated: 27 May 2016 10:40:42