Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2005-0953
HistoryMay 02, 2005 - 4:00 a.m.

CVE-2005-0953

2005-05-0204:00:00
[email protected]
web.nvd.nist.gov

3.7 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:H/Au:N/C:P/I:P/A:P

6 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

32.3%

JSON

Race condition in bzip2 1.0.2 and earlier allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by bzip2 after the decompression is complete.

Affected configurations

NVD
Node
bzipbzip2Match0.9
OR
bzipbzip2Match0.9.5_a
OR
bzipbzip2Match0.9.5_b
OR
bzipbzip2Match0.9.5_c
OR
bzipbzip2Match0.9.5_d
OR
bzipbzip2Match0.9_a
OR
bzipbzip2Match0.9_b
OR
bzipbzip2Match0.9_c
OR
bzipbzip2Match1.0
OR
bzipbzip2Match1.0.1
OR
bzipbzip2Match1.0.2

References

Related

debiancve 1
openvas 6
ubuntucve 1
debian 2
nessus 8
cvelist 1
cve 1
ubuntu 1
f5 2
freebsd_advisory 1
securityvulns 1
freebsd 1
centos 2
redhat 1
jvn 1
debiancve
debiancve
CVE-2005-0953
2005-05-02 04:00:00
openvas
openvas
FreeBSD Security Advisory (FreeBSD-SA-05:14.bzip2.asc)
2008-09-04 00:00:00
Debian Security Advisory DSA 730-1 (bzip2)
2008-01-17 00:00:00
FreeBSD Security Advisory (FreeBSD-SA-05:14.bzip2.asc)
2008-09-04 00:00:00
ubuntucve
ubuntucve
CVE-2005-0953
2005-05-02 00:00:00
debian
debian
[SECURITY] [DSA 730-1] New bzip2 packages fix file unauthorised permissions modification
2005-05-27 17:41:55
[SECURITY] [DSA 730-1] New bzip2 packages fix file unauthorised permissions modification
2005-05-27 17:41:55
nessus
nessus
Debian DSA-730-1 : bzip2 - race condition
2005-06-17 00:00:00
Mandrake Linux Security Advisory : bzip2 (MDKSA-2005:091)
2005-05-19 00:00:00
FreeBSD : bzip2 -- denial of service and permission race vulnerabilities (197f444f-e8ef-11d9-b875-0001020eed82)
2005-07-13 00:00:00
cvelist
cvelist
CVE-2005-0953
2005-04-03 05:00:00
cve
cve
CVE-2005-0953
2005-05-02 04:00:00
ubuntu
ubuntu
bzip2 vulnerabilities
2005-05-17 00:00:00
f5
f5
K16965 : bzip2 vulnerabilities CVE-2005-0953 and CVE-2005-1260
2015-07-14 00:00:00
SOL16965 - bzip2 vulnerabilities CVE-2005-0953 and CVE-2005-1260
2015-07-14 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-05:14.bzip2
2005-06-29 00:00:00
securityvulns
securityvulns
[ MDKSA-2006:026 ] - Updated bzip2 packages fix bzgrep vulnerabilities
2006-01-31 00:00:00
freebsd
freebsd
bzip2 -- denial of service and permission race vulnerabilities
2005-03-30 00:00:00
centos
centos
bzip2 security update
2005-06-16 21:06:50
bzip2 security update
2005-06-16 23:23:09
redhat
redhat
(RHSA-2005:474) bzip2 security update
2005-06-16 00:00:00
jvn
jvn
JVN#78689801: BGA32.DLL and QBga32.DLL contain multiple vulnerabilities
2015-05-19 00:00:00

3.7 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:H/Au:N/C:P/I:P/A:P

6 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

32.3%

JSON
Related for NVD:CVE-2005-0953
debiancve1openvas6ubuntucve1debian2nessus8cvelist1cve1ubuntu1f52freebsd_advisory1securityvulns1freebsd1centos2redhat1jvn1