2 matches found
CVE-2005-2991
ncompress 4.2.4 and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files using 1 zdiff or 2 zcmp, a different vulnerability than CVE-2004-0970...
CVE-2005-2991
CVE-2005-2991 describes a local-file overwrite issue in ncompress 4.2.4 and earlier. The vulnerability arises from a symlink attack on temporary files used by (1) zdiff and (2) zcmp, allowing a local user to overwrite arbitrary files. It is noted as a different vulnerability from CVE-2004-0970. T...