Lucene search

[email protected]CVE-2005-2527

HistoryDec 31, 2005 - 5:00 a.m.

CVE-2005-2527

2005-12-3105:00:00

CWE-59

[email protected]

web.nvd.nist.gov

cve-2005

java

apple mac os x

race condition

file corruption

symlink attack

6.2 Medium

AI Score

Confidence

Low

1.2 Low

CVSS2

Access Vector

LOCAL

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:H/Au:N/C:N/I:P/A:N

0.0004 Low

EPSS

Percentile

12.7%

JSON

Race condition in Java 1.4.2 before 1.4.2 Release 2 on Apple Mac OS X allows local users to corrupt files or create arbitrary files via unspecified attack vectors related to a temporary directory, possibly due to a symlink attack.

CPENameOperatorVersion
sun:javasun javale1.4.2_release1

CPE	Name	Operator	Version
sun:java	sun java	le	1.4.2_release1

References

docs.info.apple.com/article.html?artnum=302266

lists.apple.com/archives/security-announce/2005/Sep/msg00001.html

secunia.com/advisories/16808

www.ciac.org/ciac/bulletins/p-306.shtml

www.securityfocus.com/bid/14825

www.vupen.com/english/advisories/2005/1734

exchange.xforce.ibmcloud.com/vulnerabilities/22262

6.2 Medium

AI Score

Confidence

Low

1.2 Low

CVSS2

Access Vector

LOCAL

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:H/Au:N/C:N/I:P/A:N

0.0004 Low

EPSS

Percentile

12.7%

JSON

Related for CVE-2005-2527

cvelist1 nessus1