Lucene search
HistoryDec 31, 2005 - 5:00 a.m.
CVE-2005-3342
1.2 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:H/Au:N/C:N/I:P/A:N
6.2 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
noweb 2.10c and earlier allows local users to overwrite arbitrary files via symlink attacks on temporary files in (1) lib/toascii.nw and (2) shell/roff.mm.
Affected configurations
Node
norman_ramseynowebMatch2.9a
ORnorman_ramseynowebMatch2.10c
References
Related
nessus
nessus
Debian DSA-968-1 : noweb - insecure temporary file
2006-10-14 00:00:00
Ubuntu 4.10 / 5.04 / 5.10 : noweb vulnerability (USN-254-1)
2006-03-13 00:00:00
GLSA-200602-14 : noweb: Insecure temporary file creation
2006-02-27 00:00:00
debian
debian
osv
osv
noweb - insecure temporary file
2006-02-13 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200602-14 (noweb)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200602-14 (noweb)
2008-09-24 00:00:00
Debian Security Advisory DSA 968-1 (noweb)
2008-01-17 00:00:00
cvelist
cvelist
CVE-2005-3342
2006-02-14 20:00:00
ubuntu
ubuntu
noweb vulnerability
2006-02-22 00:00:00
ubuntucve
ubuntucve
CVE-2005-3342
2005-12-31 00:00:00
cve
cve
CVE-2005-3342
2006-02-14 20:00:00
debiancve
debiancve
CVE-2005-3342
2006-02-14 20:00:00
securityvulns
securityvulns
gentoo
gentoo
noweb: Insecure temporary file creation
2006-02-26 00:00:00
1.2 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:H/Au:N/C:N/I:P/A:N
6.2 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
Related for NVD:CVE-2005-3342