Lucene search
HistoryFeb 21, 2005 - 5:00 a.m.
CVE-2005-0503
CVSS2
4.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.4
Confidence
Low
EPSS
0
Percentile
5.1%
uim before 0.4.5.1 trusts certain environment variables when libUIM is used in setuid or setgid applications, which allows local users to gain privileges.
Affected configurations
Node
uimuimMatch0.4.5
Node
mandrakesoftmandrake_linuxMatch10.1
ORmandrakesoftmandrake_linuxMatch10.1x86_64
| Vendor | Product | Version | CPE |
|---|---|---|---|
| uim | uim | 0.4.5 | cpe:2.3:a:uim:uim:0.4.5:*:*:*:*:*:*:* |
| mandrakesoft | mandrake_linux | 10.1 | cpe:2.3:o:mandrakesoft:mandrake_linux:10.1:*:*:*:*:*:*:* |
| mandrakesoft | mandrake_linux | 10.1 | cpe:2.3:o:mandrakesoft:mandrake_linux:10.1:*:x86_64:*:*:*:*:* |
Related
openvas
openvas
Gentoo Security Advisory GLSA 200502-31 (uim)
2008-09-24 00:00:00
FreeBSD Ports: ja-uim
2008-09-04 00:00:00
FreeBSD Ports: ja-uim
2008-09-04 00:00:00
cve
cve
CVE-2005-0503
2005-02-21 05:00:00
gentoo
gentoo
uim: Privilege escalation vulnerability
2005-02-28 00:00:00
debiancve
debiancve
CVE-2005-0503
2005-02-21 05:00:00
ubuntucve
ubuntucve
CVE-2005-0503
2005-02-21 00:00:00
cvelist
cvelist
CVE-2005-0503
2005-02-21 05:00:00
nessus
nessus
GLSA-200502-31 : uim: Privilege escalation vulnerability
2005-03-01 00:00:00
FreeBSD : uim -- privilege escalation vulnerability (fb03b1c6-8a8a-11d9-81f7-02023f003c9f)
2005-07-13 00:00:00
Mandrake Linux Security Advisory : uim (MDKSA-2005:046)
2005-02-25 00:00:00
freebsd
freebsd
uim -- privilege escalation vulnerability
2005-02-21 00:00:00
CVSS2
4.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.4
Confidence
Low
EPSS
0
Percentile
5.1%
Related for NVD:CVE-2005-0503