Lucene search
HistorySep 01, 2004 - 4:00 a.m.
CVE-2004-0160
synaesthesia
cve-2004-0160
arbitrary code execution
symlink attack
information security
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
7 High
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
Synaesthesia 2.2 and earlier allows local users to execute arbitrary code via a symlink attack on the configuration file.
Affected configurations
Node
synaesthesiasynaesthesiaMatch2.1.0
ORsynaesthesiasynaesthesiaMatch2.1.1
ORsynaesthesiasynaesthesiaMatch2.1.2
ORsynaesthesiasynaesthesiaMatch2.2
Related
openvas
openvas
Debian Security Advisory DSA 446-1 (synaesthesia)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-446)
2008-01-17 00:00:00
osv
osv
synaesthesia - insecure file creation
2004-02-21 00:00:00
cvelist
cvelist
CVE-2004-0160
2004-09-01 04:00:00
securityvulns
securityvulns
nessus
nessus
Debian DSA-446-1 : synaesthesia - insecure file creation
2004-09-29 00:00:00
nvd
nvd
CVE-2004-0160
2004-03-29 05:00:00
debian
debian
[SECURITY] [DSA 446-1] New synaesthesia packages fix insecure file creation
2004-02-21 23:08:54
debiancve
debiancve
CVE-2004-0160
2004-03-29 05:00:00
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
7 High
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
Related for CVE-2004-0160