CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:C/I:N/A:N
AI Score
Confidence
Low
EPSS
Percentile
5.1%
lharc.c in lha does not securely create temporary files, which might allow local users to read or write files by creating a file before LHA is invoked.
Vendor | Product | Version | CPE |
---|---|---|---|
redhat | enterprise_linux | 2.1 | cpe:2.3:o:redhat:enterprise_linux:2.1:*:*:*:*:*:*:* |
redhat | enterprise_linux | 3.0 | cpe:2.3:o:redhat:enterprise_linux:3.0:*:*:*:*:*:*:* |
redhat | enterprise_linux | 4.0 | cpe:2.3:o:redhat:enterprise_linux:4.0:*:*:*:*:*:*:* |
redhat | fedora_core | core_5.0 | cpe:2.3:o:redhat:fedora_core:core_5.0:*:*:*:*:*:*:* |