Lucene search
MitreCVE-2004-0064HistoryFeb 17, 2004 - 5:00 a.m.
CVE-2004-0064
2004-02-1705:00:00
mitre
web.nvd.nist.gov
27
suseconfig
gnome-filesystem
yast
cve-2004-0064
symlink attack
nvd
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
AI Score
6.7
Confidence
High
EPSS
0
Percentile
0.4%
The SuSEconfig.gnome-filesystem script for YaST in SuSE 9.0 allows local users to overwrite arbitrary files via a symlink attack on files within the tmp.SuSEconfig.gnome-filesystem.$RANDOM temporary directory.
Affected configurations
Node
susesuse_linuxMatch9.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| suse | suse_linux | 9.0 | cpe:2.3:o:suse:suse_linux:9.0:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2004-0064
2004-01-15 05:00:00
exploitdb
exploitdb
SuSE Linux 9.0 - YaST Configuration Skribt Overwrite Files
2004-01-15 00:00:00
nvd
nvd
CVE-2004-0064
2004-02-17 05:00:00
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
AI Score
6.7
Confidence
High
EPSS
0
Percentile
0.4%
Related for CVE-2004-0064