Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-3126

Overview

Vulnerability Score 1.9 1.9
CVE Id CVE-2005-3126
Last Modified 06 Sep 2011 12:00:00
Published 31 Dec 2005 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2005-3126

Summary

The (1) kantiword (kantiword.sh) and (2) gantiword (gantiword.sh) scripts in antiword 0.35 and earlier allow local users to overwrite arbitrary files via a symlink attack on temporary (a) output and (b) error files.

Vulnerable Systems

Application

  • Antiword 0.32

  • Antiword 0.35


References

SECUNIA - 18530

XF - antiword-tmp-file-symlink(24194)

VUPEN - ADV-2006-0242

BID - 16278

DEBIAN - DSA-945

SECUNIA - 15866


Last Updated: 27 May 2016 10:40:48