Lucene search

K
ubuntucveUbuntu.comUB:CVE-2005-0953
HistoryMay 02, 2005 - 12:00 a.m.

CVE-2005-0953

2005-05-0200:00:00
ubuntu.com
ubuntu.com
11

CVSS2

3.7

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:H/Au:N/C:P/I:P/A:P

EPSS

0.001

Percentile

32.2%

Race condition in bzip2 1.0.2 and earlier allows local users to modify
permissions of arbitrary files via a hard link attack on a file while it is
being decompressed, whose permissions are changed by bzip2 after the
decompression is complete.

OSVersionArchitecturePackageVersionFilename
ubuntu6.06noarchbzip2< 1.0.3-0ubuntu2UNKNOWN
ubuntu6.10noarchbzip2< 1.0.3-0ubuntu2UNKNOWN
ubuntu7.04noarchbzip2< 1.0.3-0ubuntu2UNKNOWN

CVSS2

3.7

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:H/Au:N/C:P/I:P/A:P

EPSS

0.001

Percentile

32.2%