Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-3342

Overview

Vulnerability Score 1.2 1.2
CVE Id CVE-2005-3342
Last Modified 07 Mar 2011 09:26:20
Published 31 Dec 2005 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity HIGH
Authentication NONE

CVE-2005-3342

Summary

noweb 2.10c and earlier allows local users to overwrite arbitrary files via symlink attacks on temporary files in (1) lib/toascii.nw and (2) shell/roff.mm.

Vulnerable Systems

Application

  • Norman Ramsey Noweb 2.10c

  • Norman Ramsey Noweb 2.9a


References

DEBIAN - DSA-968

SECUNIA - 18967

SECUNIA - 18812

VUPEN - ADV-2006-0547

UBUNTU - USN-254-1

BID - 16610

GENTOO - GLSA-200602-14

SECUNIA - 19027

SECUNIA - 18809


Last Updated: 27 May 2016 10:40:54