Lucene search

[email protected]CVE-2005-1914

HistoryOct 03, 2022 - 4:22 p.m.

CVE-2005-1914

2022-10-0316:22:43

[email protected]

web.nvd.nist.gov

cve-2005-1914

centericq

temporary files

symlink attack

security vulnerability

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

8.7 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

CenterICQ 4.20.0 and earlier creates temporary files with predictable file names, which allows local users to overwrite arbitrary files via a symlink attack on the gg.token.PID temporary file.

Affected configurations

NVD

Node

centericqcentericqMatch4.5.0.3

centericqcentericqMatch4.5.1

centericqcentericqMatch4.5.1.3

centericqcentericqMatch4.6.0

centericqcentericqMatch4.6.0.3

centericqcentericqMatch4.6.5

centericqcentericqMatch4.6.5.3

centericqcentericqMatch4.6.9

centericqcentericqMatch4.6.9.3

centericqcentericqMatch4.7.1

centericqcentericqMatch4.7.1.3

centericqcentericqMatch4.7.2

centericqcentericqMatch4.7.2.3

centericqcentericqMatch4.7.7

centericqcentericqMatch4.7.7.3

centericqcentericqMatch4.7.8

centericqcentericqMatch4.7.8.3

centericqcentericqMatch4.8.0

centericqcentericqMatch4.8.0.1

centericqcentericqMatch4.8.2

centericqcentericqMatch4.8.2.1

centericqcentericqMatch4.8.3

centericqcentericqMatch4.8.3.1

centericqcentericqMatch4.8.4

centericqcentericqMatch4.8.4.1

centericqcentericqMatch4.8.5

centericqcentericqMatch4.8.5.1

centericqcentericqMatch4.8.6

centericqcentericqMatch4.8.6.1

centericqcentericqMatch4.8.7

centericqcentericqMatch4.8.7.1

centericqcentericqMatch4.8.8

centericqcentericqMatch4.8.8.1

centericqcentericqMatch4.8.9

centericqcentericqMatch4.9.0

centericqcentericqMatch4.9.0.1

centericqcentericqMatch4.9.1

centericqcentericqMatch4.9.1.1

centericqcentericqMatch4.9.2

centericqcentericqMatch4.9.2.1

centericqcentericqMatch4.9.3

centericqcentericqMatch4.9.3.1

centericqcentericqMatch4.9.4

centericqcentericqMatch4.9.4.1

centericqcentericqMatch4.9.5

centericqcentericqMatch4.9.5.1

centericqcentericqMatch4.9.6

centericqcentericqMatch4.9.6.1

centericqcentericqMatch4.9.7

centericqcentericqMatch4.9.7.1

centericqcentericqMatch4.9.8

centericqcentericqMatch4.9.9

centericqcentericqMatch4.9.9.1

centericqcentericqMatch4.9.10

centericqcentericqMatch4.9.10.1

centericqcentericqMatch4.9.11

centericqcentericqMatch4.9.11.1

centericqcentericqMatch4.9.12

centericqcentericqMatch4.9.12.1

centericqcentericqMatch4.10.0.1

centericqcentericqMatch4.11.0.1

centericqcentericqMatch4.12

centericqcentericqMatch4.12.0.1

centericqcentericqMatch4.13

centericqcentericqMatch4.13.0.1

centericqcentericqMatch4.14

centericqcentericqMatch4.14.0.1

centericqcentericqMatch4.20

centericqcentericqMatch4.20.0.1

CPENameOperatorVersion
centericq:centericqcentericqeq4.5.0.3
centericq:centericqcentericqeq4.5.1
centericq:centericqcentericqeq4.5.1.3
centericq:centericqcentericqeq4.6.0
centericq:centericqcentericqeq4.6.0.3
centericq:centericqcentericqeq4.6.5
centericq:centericqcentericqeq4.6.5.3
centericq:centericqcentericqeq4.6.9
centericq:centericqcentericqeq4.6.9.3
centericq:centericqcentericqeq4.7.1

CPE	Name	Operator	Version
centericq:centericq	centericq	eq	4.5.0.3
centericq:centericq	centericq	eq	4.5.1
centericq:centericq	centericq	eq	4.5.1.3
centericq:centericq	centericq	eq	4.6.0
centericq:centericq	centericq	eq	4.6.0.3
centericq:centericq	centericq	eq	4.6.5
centericq:centericq	centericq	eq	4.6.5.3
centericq:centericq	centericq	eq	4.6.9
centericq:centericq	centericq	eq	4.6.9.3
centericq:centericq	centericq	eq	4.7.1