Lucene search

[email protected]NVD:CVE-2009-4193

HistoryDec 03, 2009 - 7:30 p.m.

CVE-2009-4193

2009-12-0319:30:00

CWE-59

[email protected]

web.nvd.nist.gov

3.3 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:N/I:P/A:P

6.1 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Merkaartor 0.14 allows local users to append data to arbitrary files via a symlink attack on the /tmp/merkaartor.log temporary file.

Affected configurations

NVD

Node

merkaartormerkaartorMatch0.14

References

bugs.debian.org/cgi-bin/bugreport.cgi?bug=548546

osvdb.org/58389

secunia.com/advisories/36897

trac.openstreetmap.org/ticket/2320

www.securityfocus.com/bid/36529

exchange.xforce.ibmcloud.com/vulnerabilities/53486

www.redhat.com/archives/fedora-package-announce/2009-December/msg00869.html

www.redhat.com/archives/fedora-package-announce/2009-December/msg00870.html

3.3 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:N/I:P/A:P

6.1 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2009-4193

nessus2 fedora2 debiancve1 openvas4 cve1 cvelist1 ubuntucve1 prion1