Lucene search

DebianCVELIST:CVE-2005-3342

HistoryFeb 14, 2006 - 8:00 p.m.

CVE-2005-3342

2006-02-1420:00:00

debian

www.cve.org

6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

noweb 2.10c and earlier allows local users to overwrite arbitrary files via symlink attacks on temporary files in (1) lib/toascii.nw and (2) shell/roff.mm.

References

secunia.com/advisories/18809

secunia.com/advisories/18812

secunia.com/advisories/18967

secunia.com/advisories/19027

www.debian.org/security/2006/dsa-968

www.gentoo.org/security/en/glsa/glsa-200602-14.xml

www.securityfocus.com/bid/16610

www.ubuntu.com/usn/usn-254-1

www.vupen.com/english/advisories/2006/0547