Lucene search

[email protected]NVD:CVE-2010-2056

HistoryJul 22, 2010 - 5:43 a.m.

CVE-2010-2056

2010-07-2205:43:14

CWE-59

[email protected]

web.nvd.nist.gov

3.3 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:N/I:P/A:P

6.1 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

GNU gv before 3.7.0 allows local users to overwrite arbitrary files via a symlink attack on a temporary file.

Affected configurations

NVD

Node

gnugvRange≤3.6.9

gnugvMatch3.5.8

gnugvMatch3.6.0

gnugvMatch3.6.1

gnugvMatch3.6.2

gnugvMatch3.6.3

gnugvMatch3.6.4

gnugvMatch3.6.5

gnugvMatch3.6.6

gnugvMatch3.6.7

gnugvMatch3.6.8

References

lists.fedoraproject.org/pipermail/package-announce/2010-July/043913.html

lists.fedoraproject.org/pipermail/package-announce/2010-July/043948.html

savannah.gnu.org/forum/forum.php?forum_id=6368

secunia.com/advisories/40475

secunia.com/advisories/40532

www.osvdb.org/66249

www.vupen.com/english/advisories/2010/1757

bugzilla.redhat.com/show_bug.cgi?id=599621

3.3 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:N/I:P/A:P

6.1 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2010-2056

nessus4 ubuntucve1 cve1 openvas7 debiancve1 securityvulns2 prion1 cvelist1 fedora2 gentoo1