Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2004-0996
HistoryJan 10, 2005 - 5:00 a.m.

CVE-2004-0996

2005-01-1005:00:00
[email protected]
web.nvd.nist.gov
33
cve
cscope
main.c
symlink attack
file overwrite
security vulnerability

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

0.4%

JSON

main.c in cscope 15-4 and 15-5 creates temporary files with predictable filenames, which allows local users to overwrite arbitrary files via a symlink attack.

Affected configurations

NVD
Node
cscopecscopeMatch13.0
OR
cscopecscopeMatch15.1
OR
cscopecscopeMatch15.3
OR
cscopecscopeMatch15.4
OR
cscopecscopeMatch15.5
Node
debiandebian_linuxMatch3.0
OR
debiandebian_linuxMatch3.0alpha
OR
debiandebian_linuxMatch3.0arm
OR
debiandebian_linuxMatch3.0hppa
OR
debiandebian_linuxMatch3.0ia-32
OR
debiandebian_linuxMatch3.0ia-64
OR
debiandebian_linuxMatch3.0m68k
OR
debiandebian_linuxMatch3.0mips
OR
debiandebian_linuxMatch3.0mipsel
OR
debiandebian_linuxMatch3.0ppc
OR
debiandebian_linuxMatch3.0s-390
OR
debiandebian_linuxMatch3.0sparc
OR
gentoolinux
OR
scounixwareMatch7.1.1
OR
scounixwareMatch7.1.3
OR
scounixwareMatch7.1.4

Related

freebsd 1
openvas 6
redhatcve 1
nessus 4
gentoo 1
debian 2
ubuntucve 1
cvelist 1
nvd 1
debiancve 1
osv 1
altlinux 1
seebug 1
freebsd
freebsd
cscope -- symlink attack vulnerability
2003-04-03 00:00:00
openvas
openvas
FreeBSD Ports: cscope
2008-09-04 00:00:00
FreeBSD Ports: cscope
2008-09-04 00:00:00
Debian Security Advisory DSA 610-1 (cscope)
2008-01-17 00:00:00
redhatcve
redhatcve
CVE-2004-0996
2015-10-30 09:24:28
nessus
nessus
GLSA-200412-11 : Cscope: Insecure creation of temporary files
2004-12-17 00:00:00
Debian DSA-610-1 : cscope - insecure temporary file
2004-12-17 00:00:00
FreeBSD : cscope -- symlink attack vulnerability (a7bfd423-484f-11d9-a9e7-0001020eed82)
2005-07-13 00:00:00
gentoo
gentoo
Cscope: Insecure creation of temporary files
2004-12-16 00:00:00
debian
debian
[SECURITY] [DSA 610-1] New cscope packages fix insecure temporary file creation
2004-12-17 09:08:36
[SECURITY] [DSA 610-1] New cscope packages fix insecure temporary file creation
2004-12-17 09:08:36
ubuntucve
ubuntucve
CVE-2004-0996
2005-01-10 00:00:00
cvelist
cvelist
CVE-2004-0996
2004-12-01 05:00:00
nvd
nvd
CVE-2004-0996
2005-01-10 05:00:00
debiancve
debiancve
CVE-2004-0996
2005-01-10 05:00:00
osv
osv
cscope - insecure temporary file
2004-12-17 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 6 package cscope version 15.5-alt2
2004-12-01 00:00:00
seebug
seebug
Mac OS X 2007-007更新修复多个安全漏洞
2007-08-02 00:00:00

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

0.4%

JSON
Related for CVE-2004-0996
freebsd1openvas6redhatcve1nessus4gentoo1debian2ubuntucve1cvelist1nvd1debiancve1osv1altlinux1seebug1