Lucene search

[email protected]CVE-2004-0058

HistoryFeb 17, 2004 - 5:00 a.m.

CVE-2004-0058

2004-02-1705:00:00

[email protected]

web.nvd.nist.gov

antivir

linux

symlink attack

cve-2004-0058

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

6.8 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Antivir / Linux 2.0.9-9, and possibly earlier versions, allows local users to overwrite arbitrary files via a symlink attack on the .pid_antivir_$$ temporary file.

Affected configurations

NVD

Node

linuxlinux_kernelRange≤2.0.9.9

CPENameOperatorVersion
linux:linux_kernellinux linux kernelle2.0.9.9

CPE	Name	Operator	Version
linux:linux_kernel	linux linux kernel	le	2.0.9.9

References

marc.info/?l=bugtraq&m=107402026023763&w=2

secunia.com/advisories/10620

www.osvdb.org/3496

www.securitytracker.com/id?1008702

exchange.xforce.ibmcloud.com/vulnerabilities/14214

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

6.8 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2004-0058

nvd1 cvelist1