Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-3343

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2005-3343
Last Modified 02 Apr 2010 01:56:28
Published 27 Dec 2005 06:03:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-3343

Summary

tkdiff before 4.1.1 allows local users to overwrite arbitrary files via a symlink attack on temporary files.

Vulnerable Systems

Application

  • Tkdiff 3.0.8

  • Tkdiff 3.0.9

  • Tkdiff 4.0

  • Tkdiff 4.0.2

  • Tkdiff 4.1


References

BID - 16064

OSVDB - 21933

DEBIAN - DSA-927

SECUNIA - 18083

CONFIRM - http://sourceforge.net/project/shownotes.php?release_id=380030&group_id=64960

SECUNIA - 18215

XF - tkdiff-tmp-file-symlink(23858)

MANDRIVA - MDKSA-2006:001

SECTRACK - 1015421


Last Updated: 27 May 2016 10:40:54