Lucene search
UbuntuUSN-191-1HistorySep 30, 2005 - 12:00 a.m.
unzip vulnerability
2005-09-3000:00:00
ubuntu.com
32
9.1 High
AI Score
Confidence
High
1.2 Low
CVSS2
Access Vector
LOCAL
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:H/Au:N/C:P/I:N/A:N
0.001 Low
EPSS
Percentile
27.3%
Releases
- Ubuntu 5.04
- Ubuntu 4.10
Details
Imran Ghory found a race condition in the handling of output files.
While a file was unpacked by unzip, a local attacker with write
permissions to the target directory could exploit this to change the
permissions of arbitrary files of the unzip user.
References
Related
openvas
openvas
Debian Security Advisory DSA 903-2 (unzip)
2008-01-17 00:00:00
Debian Security Advisory DSA 903-1 (unzip)
2008-01-17 00:00:00
Debian Security Advisory DSA 903-1 (unzip)
2008-01-17 00:00:00
nessus
nessus
Ubuntu 4.10 / 5.04 : unzip vulnerability (USN-191-1)
2006-01-15 00:00:00
Debian DSA-903-2 : unzip - race condition
2006-10-14 00:00:00
debian
debian
ubuntucve
ubuntucve
CVE-2005-2475
2005-08-05 00:00:00
debiancve
debiancve
CVE-2005-2475
2005-08-05 04:00:00
cve
cve
CVE-2005-2475
2005-08-05 04:00:00
freebsd
freebsd
unzip -- permission race vulnerability
2005-08-02 00:00:00
redhat
redhat
(RHSA-2007:0203) Low: unzip security and bug fix update
2007-05-01 00:00:00
centos
centos
unzip security update
2007-05-02 08:59:05
oraclelinux
oraclelinux
Low unzip security and bug fix update
2007-05-17 00:00:00
ics
ics
VISAM VBASE Editor
2021-11-09 12:00:00
9.1 High
AI Score
Confidence
High
1.2 Low
CVSS2
Access Vector
LOCAL
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:H/Au:N/C:P/I:N/A:N
0.001 Low
EPSS
Percentile
27.3%
Related for USN-191-1