Lucene search
HistoryApr 15, 2004 - 4:00 a.m.
CVE-2004-0372
xine
symlink attack
arbitrary files
cve-2004-0372
nvd
6 Medium
AI Score
Confidence
Low
2.1 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
0.0004 Low
EPSS
Percentile
5.2%
xine allows local users to overwrite arbitrary files via a symlink attack on a bug report email that is generated by the (1) xine-bugreport or (2) xine-check scripts.
Related
securityvulns
securityvulns
openvas
openvas
Debian Security Advisory DSA 477-1 (xine-ui)
2008-01-17 00:00:00
FreeBSD Ports: xine
2008-09-04 00:00:00
Debian Security Advisory DSA 477-1 (xine-ui)
2008-01-17 00:00:00
nessus
nessus
debian
debian
osv
osv
xine-ui - insecure temporary file creation
2004-04-06 00:00:00
cvelist
cvelist
CVE-2004-0372
2004-03-27 05:00:00
debiancve
debiancve
CVE-2004-0372
2004-04-15 04:00:00
gentoo
gentoo
Multiple vulnerabilities in xine
2004-04-27 00:00:00
6 Medium
AI Score
Confidence
Low
2.1 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
0.0004 Low
EPSS
Percentile
5.2%
Related for CVE-2004-0372