Lucene search

K
cve[email protected]CVE-2005-0077
HistoryMay 02, 2005 - 4:00 a.m.

CVE-2005-0077

2005-05-0204:00:00
web.nvd.nist.gov
28
dbi library
perl
local users
symlink attack
security vulnerability
nvd

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

AI Score

6

Confidence

Low

EPSS

0

Percentile

5.1%

The DBI library (libdbi-perl) for Perl allows local users to overwrite arbitrary files via a symlink attack on a temporary PID file.

Affected configurations

NVD
Node
debiandebian_linuxMatch3.0woody
OR
gentoolinux
OR
redhatenterprise_linuxMatch4.0advanced_server
OR
redhatenterprise_linuxMatch4.0enterprise_server
OR
redhatenterprise_linuxMatch4.0workstation
OR
redhatenterprise_linux_desktopMatch4.0
OR
ubuntuubuntu_linuxMatch4.10
VendorProductVersionCPE
redhatenterprise_linux_desktop4.0cpe:/o:redhat:enterprise_linux_desktop:4.0:::
debiandebian_linux3.0cpe:/o:debian:debian_linux:3.0:::
redhatenterprise_linux4.0cpe:/o:redhat:enterprise_linux:4.0:::
ubuntuubuntu_linux4.10cpe:/o:ubuntu:ubuntu_linux:4.10:::
gentoolinuxcpe:/o:gentoo:linux::::

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

AI Score

6

Confidence

Low

EPSS

0

Percentile

5.1%