Lucene search
MitreCVE-2004-1296HistoryDec 31, 2004 - 5:00 a.m.
CVE-2004-1296
2004-12-3105:00:00
mitre
web.nvd.nist.gov
30
cve
2004
1296
groff
symlink attack
security vulnerability
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
AI Score
6
Confidence
Low
EPSS
0
Percentile
5.1%
The (1) eqn2graph and (2) pic2graph scripts in groff 1.18.1 allow local users to overwrite arbitrary files via a symlink attack on temporary files.
Affected configurations
Node
gnugroffMatch1.18.1
Related
openvas
openvas
FreeBSD Ports: ja-groff
2008-09-04 00:00:00
FreeBSD Ports: ja-groff
2008-09-04 00:00:00
cvelist
cvelist
CVE-2004-1296
2004-12-31 05:00:00
CVE-2009-5080
2011-06-30 15:26:00
redhatcve
redhatcve
CVE-2004-1296
2015-10-30 09:53:18
freebsd
freebsd
nvd
nvd
CVE-2004-1296
2004-12-31 05:00:00
CVE-2009-5080
2011-06-30 15:55:01
nessus
nessus
FreeBSD : groff -- pic2graph and eqn2graph are vulnerable to symlink attack through temporary files (01bb84e2-bd88-11d9-a281-02e018374e71)
2005-07-13 00:00:00
NewStart CGSL MAIN 5.04 : groff Multiple Vulnerabilities (NS-SA-2023-0067)
2023-12-27 00:00:00
Mandriva Linux Security Advisory : groff (MDVSA-2013:086)
2013-04-20 00:00:00
debiancve
debiancve
CVE-2004-1296
2004-12-31 05:00:00
CVE-2009-5080
2011-06-30 15:55:01
prion
prion
Directory traversal
2011-06-30 15:55:00
cve
cve
CVE-2009-5080
2011-06-30 15:55:01
ubuntucve
ubuntucve
CVE-2009-5080
2011-06-30 00:00:00
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
AI Score
6
Confidence
Low
EPSS
0
Percentile
5.1%
Related for CVE-2004-1296