Lucene search
HistorySep 01, 2004 - 4:00 a.m.
CVE-2004-0160
synaesthesia
cve-2004-0160
arbitrary code execution
symlink attack
information security
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
7
Confidence
Low
EPSS
0
Percentile
5.1%
Synaesthesia 2.2 and earlier allows local users to execute arbitrary code via a symlink attack on the configuration file.
Affected configurations
Node
synaesthesiasynaesthesiaMatch2.1.0
ORsynaesthesiasynaesthesiaMatch2.1.1
ORsynaesthesiasynaesthesiaMatch2.1.2
ORsynaesthesiasynaesthesiaMatch2.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| synaesthesia | synaesthesia | 2.1.2 | cpe:/a:synaesthesia:synaesthesia:2.1.2::: |
| synaesthesia | synaesthesia | 2.2 | cpe:/a:synaesthesia:synaesthesia:2.2::: |
| synaesthesia | synaesthesia | 2.1.0 | cpe:/a:synaesthesia:synaesthesia:2.1.0::: |
| synaesthesia | synaesthesia | 2.1.1 | cpe:/a:synaesthesia:synaesthesia:2.1.1::: |
Related
cvelist
cvelist
CVE-2004-0160
2004-09-01 04:00:00
openvas
openvas
Debian Security Advisory DSA 446-1 (synaesthesia)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-446)
2008-01-17 00:00:00
osv
osv
synaesthesia - insecure file creation
2004-02-21 00:00:00
securityvulns
securityvulns
debian
debian
[SECURITY] [DSA 446-1] New synaesthesia packages fix insecure file creation
2004-02-21 23:08:54
debiancve
debiancve
CVE-2004-0160
2004-03-29 05:00:00
nessus
nessus
Debian DSA-446-1 : synaesthesia - insecure file creation
2004-09-29 00:00:00
nvd
nvd
CVE-2004-0160
2004-03-29 05:00:00
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
7
Confidence
Low
EPSS
0
Percentile
5.1%
Related for CVE-2004-0160