CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
28.4%
suid.cgi scripts in F-Secure (1) Internet Gatekeeper for Linux before 2.15.484 and (2) Anti-Virus Linux Gateway before 2.16 are installed SUID with world-executable permissions, which allows local users to gain privilege.
Vendor | Product | Version | CPE |
---|---|---|---|
f-secure | f-secure_anti-virus | * | cpe:2.3:a:f-secure:f-secure_anti-virus:*:*:linux_gateways:*:*:*:*:* |
f-secure | internet_gatekeeper | * | cpe:2.3:a:f-secure:internet_gatekeeper:*:*:linux:*:*:*:*:* |
secunia.com/advisories/17467
securitytracker.com/id?1015159
securitytracker.com/id?1015160
www.f-secure.com/security/fsc-2005-3.shtml
www.osvdb.org/20513
www.osvdb.org/20537
www.osvdb.org/20538
www.osvdb.org/20539
www.osvdb.org/20540
www.osvdb.org/20541
www.osvdb.org/20542
www.osvdb.org/20543
www.osvdb.org/20544
www.osvdb.org/20545
www.osvdb.org/20546
www.osvdb.org/20547
www.osvdb.org/20548
www.osvdb.org/20549
www.osvdb.org/20550
www.osvdb.org/20551
www.osvdb.org/20552
www.securityfocus.com/bid/15339
www.vupen.com/english/advisories/2005/2331
exchange.xforce.ibmcloud.com/vulnerabilities/22966