Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2005-0990HistoryMay 02, 2005 - 4:00 a.m.
CVE-2005-0990
2005-05-0204:00:00
Debian Security Bug Tracker
security-tracker.debian.org
11
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
0.0004 Low
EPSS
Percentile
5.1%
unshar (unshar.c) in sharutils 4.2.1 allows local users to overwrite arbitrary files via a symlink attack on the unsh.X temporary file.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | sharutils | < 1:4.2.1-13 | sharutils_1:4.2.1-13_all.deb |
| Debian | 11 | all | sharutils | < 1:4.2.1-13 | sharutils_1:4.2.1-13_all.deb |
| Debian | 999 | all | sharutils | < 1:4.2.1-13 | sharutils_1:4.2.1-13_all.deb |
| Debian | 13 | all | sharutils | < 1:4.2.1-13 | sharutils_1:4.2.1-13_all.deb |
Related
openvas
openvas
FreeBSD Ports: sharutils
2008-09-04 00:00:00
FreeBSD Ports: sharutils
2008-09-04 00:00:00
cvelist
cvelist
CVE-2005-0990
2005-04-06 04:00:00
nvd
nvd
CVE-2005-0990
2005-05-02 04:00:00
nessus
nessus
FreeBSD : sharutils -- unshar insecure temporary file creation (5f003a08-ba3c-11d9-837d-000e0c2e438a)
2005-07-13 00:00:00
Fedora Core 3 : sharutils-4.2.1-22.2.FC3 (2005-319)
2005-09-12 00:00:00
Mandrake Linux Security Advisory : sharutils (MDKSA-2005:067)
2005-04-08 00:00:00
cve
cve
CVE-2005-0990
2005-05-02 04:00:00
freebsd
freebsd
sharutils -- unshar insecure temporary file creation
2005-04-04 00:00:00
ubuntucve
ubuntucve
CVE-2005-0990
2005-05-02 00:00:00
redhat
redhat
(RHSA-2005:377) sharutils security update
2005-04-26 00:00:00
centos
centos
sharutils security update
2005-04-26 22:37:03
cvs, sharutils security update
2005-04-26 17:53:08
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
0.0004 Low
EPSS
Percentile
5.1%
Related for DEBIANCVE:CVE-2005-0990