Lucene search
HistoryMay 19, 2005 - 4:00 a.m.
CVE-2005-0392
cve-2005-0392
log files
root privileges
local users
arbitrary commands
security vulnerability
nvd
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
9.1 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
5.1%
ppxp does not drop root privileges before opening log files, which allows local users to execute arbitrary commands.
Affected configurations
Node
debianppxp
| CPE | Name | Operator | Version |
|---|---|---|---|
| debian:ppxp | debian ppxp | eq | * |
Related
nessus
nessus
Debian DSA-725-2 : ppxp - missing privilege release
2005-05-19 00:00:00
FreeBSD : ppxp -- local root exploit (641e8609-cab5-11d9-9aed-000e0c2e438a)
2011-10-14 00:00:00
Debian DSA-773-1 : amd64 - several vulnerabilities
2012-01-12 00:00:00
openvas
openvas
Debian Security Advisory DSA 725-2 (ppxp)
2008-01-17 00:00:00
FreeBSD Ports: ppxp
2008-09-04 00:00:00
FreeBSD Ports: ppxp
2008-09-04 00:00:00
ubuntucve
ubuntucve
CVE-2005-0392
2005-05-19 00:00:00
debian
debian
[SECURITY] [DSA 725-2] New ppxp packages fix local root exploit
2005-07-04 18:05:58
[SECURITY] [DSA 725-1] New ppxp packages fix local root exploit
2005-05-19 15:52:08
[SECURITY] [DSA 725-2] New ppxp packages fix local root exploit
2005-07-04 18:05:58
securityvulns
securityvulns
[SECURITY] [DSA 725-2] New ppxp packages fix local root exploit
2005-07-05 00:00:00
nvd
nvd
CVE-2005-0392
2005-05-19 04:00:00
cvelist
cvelist
CVE-2005-0392
2005-05-19 04:00:00
freebsd
freebsd
ppxp -- local root exploit
2005-05-19 00:00:00
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
9.1 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
5.1%
Related for CVE-2005-0392