Lucene search
HistoryNov 06, 2005 - 11:02 a.m.
CVE-2005-3124
acme thttpd
cve-2005-3124
syslogtocern
symlink attack
file write vulnerability
nvd
6.3 Medium
AI Score
Confidence
Low
2.1 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
0.0004 Low
EPSS
Percentile
5.2%
syslogtocern in Acme thttpd before 2.23 allows local users to write arbitrary files via a symlink attack on a temporary file.
| CPE | Name | Operator | Version |
|---|---|---|---|
| acme_labs:thttpd | acme labs thttpd | eq | 2.21b |
| acme_labs:thttpd | acme labs thttpd | eq | 2.23b1 |
Related
openvas
openvas
Debian: Security Advisory (DSA-883-1)
2008-01-17 00:00:00
Debian Security Advisory DSA 883-1 (thttpd)
2008-01-17 00:00:00
debian
debian
[SECURITY] [DSA 883-1] New thttpd packages fix insecure temporary file
2005-11-04 00:00:00
[SECURITY] [DSA 883-1] New thttpd packages fix insecure temporary file
2005-11-04 16:52:13
securityvulns
securityvulns
[SECURITY] [DSA 883-1] New thttpd packages fix insecure temporary file
2005-11-05 00:00:00
ubuntucve
ubuntucve
CVE-2005-3124
2005-11-06 00:00:00
nessus
nessus
Debian DSA-883-1 : thttpd - insecure temporary file
2006-10-14 00:00:00
6.3 Medium
AI Score
Confidence
Low
2.1 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
0.0004 Low
EPSS
Percentile
5.2%
Related for CVE-2005-3124