[email protected]NVD:CVE-2005-1751

HistoryMay 25, 2005 - 4:00 a.m.

CVE-2005-1751

2005-05-2504:00:00

[email protected]

web.nvd.nist.gov

3.7 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:H/Au:N/C:P/I:P/A:P

6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.6%

JSON

Race condition in shtool 2.0.1 and earlier allows local users to create or modify arbitrary files via a symlink attack on the .shtool.$$ temporary file, a different vulnerability than CVE-2005-1759.

Affected configurations

NVD

Node

shtoolshtoolRange≤2.0.1

References

bugs.gentoo.org/show_bug.cgi?id=93782

marc.info/?l=bugtraq&m=111955937622637&w=2

secunia.com/advisories/15496

secunia.com/advisories/15668

securitytracker.com/id?1014059

www.debian.org/security/2005/dsa-789

www.gentoo.org/security/en/glsa/glsa-200506-08.xml

www.redhat.com/support/errata/RHSA-2005-564.html

www.securityfocus.com/bid/13767

www.zataz.net/adviso/shtool-05252005.txt

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A345

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9639

3.7 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:H/Au:N/C:P/I:P/A:P

6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.6%

JSON

Related for NVD:CVE-2005-1751

cve2 ubuntucve2 nvd1 nessus8 openvas6 debiancve2 securityvulns1 cvelist2 gentoo1 ubuntu1 centos1 redhat1 debian2 osv1