Lucene search

MitreCVE-2005-4595

HistoryJan 01, 2006 - 11:00 p.m.

CVE-2005-4595

2006-01-0123:00:00

mitre

web.nvd.nist.gov

cve-2005-4595

untrusted search path vulnerability

rpath

xnview

nview

gentoo linux

local users

arbitrary code

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.1

Confidence

High

EPSS

0.001

Percentile

25.6%

JSON

Untrusted search path vulnerability (RPATH) in XnView 1.70 and NView 4.51 on Gentoo Linux allows local users to execute arbitrary code via a malicious library in the current working directory.

Affected configurations

Nvd

Node

gentoonviewMatch4.51

gentooxnviewMatch1.70

VendorProductVersionCPE
gentoonview4.51cpe:2.3:a:gentoo:nview:4.51:*:*:*:*:*:*:*
gentooxnview1.70cpe:2.3:a:gentoo:xnview:1.70:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
gentoo	nview	4.51	cpe:2.3:a:gentoo:nview:4.51:::::::*
gentoo	xnview	1.70	cpe:2.3:a:gentoo:xnview:1.70:::::::*

References

bugs.gentoo.org/show_bug.cgi?id=117063

secunia.com/advisories/18235

secunia.com/advisories/18240

www.gentoo.org/security/en/glsa/glsa-200512-18.xml

www.osvdb.org/22093

www.osvdb.org/22094

www.securityfocus.com/bid/16087

exchange.xforce.ibmcloud.com/vulnerabilities/23910

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.1

Confidence

High

EPSS

0.001

Percentile

25.6%

JSON

Related for CVE-2005-4595