Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
GnuGzip

3 matches found

CVE
CVEadded 2005/02/09 5:0 a.m.58 views

CVE-2004-0970

The (1) gzexe, (2) zdiff, and (3) znew scripts in the gzip package, as used by other packages such as ncompress, allows local users to overwrite files via a symlink attack on temporary files. NOTE: the znew vulnerability may overlap CVE-2003-0367.

2.1CVSS5.8AI score0.00141EPSS
CVE
CVEadded 2003/07/02 4:0 a.m.55 views

CVE-2003-0367

znew in the gzip package allows local users to overwrite arbitrary files via a symlink attack on temporary files.

2.1CVSS6AI score0.00141EPSS
CVE
CVEadded 2005/01/19 5:0 a.m.48 views

CVE-2004-1349

gzip before 1.3 in Solaris 8, when called with the -f or -force flags, will change the permissions of files that are hard linked to the target files, which allows local users to view or modify these files.

2.1CVSS6.3AI score0.00109EPSS