Lucene search

[email protected]CVE-2005-2527

HistoryAug 05, 2006 - 1:00 a.m.

CVE-2005-2527

2006-08-0501:00:00

CWE-59

[email protected]

web.nvd.nist.gov

cve-2005

java

apple mac os x

race condition

file corruption

symlink attack

1.2 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:H/Au:N/C:N/I:P/A:N

6.1 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

13.2%

JSON

Race condition in Java 1.4.2 before 1.4.2 Release 2 on Apple Mac OS X allows local users to corrupt files or create arbitrary files via unspecified attack vectors related to a temporary directory, possibly due to a symlink attack.

Affected configurations

NVD

Node

sunjavaRange≤1.4.2_release1

CPENameOperatorVersion
sun:javasun javale1.4.2_release1

CPE	Name	Operator	Version
sun:java	sun java	le	1.4.2_release1

References

docs.info.apple.com/article.html?artnum=302266

lists.apple.com/archives/security-announce/2005/Sep/msg00001.html

secunia.com/advisories/16808

www.ciac.org/ciac/bulletins/p-306.shtml

www.securityfocus.com/bid/14825

www.vupen.com/english/advisories/2005/1734

exchange.xforce.ibmcloud.com/vulnerabilities/22262

1.2 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:H/Au:N/C:N/I:P/A:N

6.1 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

13.2%

JSON

Related for CVE-2005-2527

cvelist1 nvd1 nessus1