Lucene search
MitreCVE-2007-2030HistoryApr 16, 2007 - 8:19 p.m.
CVE-2007-2030
2007-04-1620:19:00
mitre
web.nvd.nist.gov
27
cve-2007-2030
lharc.c
lha
insecure temporary files
local users
file read
file write
nvd
CVSS2
4.9
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:C/I:N/A:N
AI Score
6.1
Confidence
Low
EPSS
0
Percentile
5.1%
lharc.c in lha does not securely create temporary files, which might allow local users to read or write files by creating a file before LHA is invoked.
Affected configurations
Node
redhatenterprise_linuxMatch2.1
ORredhatenterprise_linuxMatch3.0
ORredhatenterprise_linuxMatch4.0
ORredhatfedora_coreMatchcore_5.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| redhat | enterprise_linux | 2.1 | cpe:2.3:o:redhat:enterprise_linux:2.1:*:*:*:*:*:*:* |
| redhat | enterprise_linux | 3.0 | cpe:2.3:o:redhat:enterprise_linux:3.0:*:*:*:*:*:*:* |
| redhat | enterprise_linux | 4.0 | cpe:2.3:o:redhat:enterprise_linux:4.0:*:*:*:*:*:*:* |
| redhat | fedora_core | core_5.0 | cpe:2.3:o:redhat:fedora_core:core_5.0:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2007-2030
2007-04-16 20:00:00
prion
prion
Information disclosure
2007-04-16 20:19:00
nvd
nvd
CVE-2007-2030
2007-04-16 20:19:00
nessus
nessus
Mandrake Linux Security Advisory : lha (MDKSA-2007:117)
2007-06-07 00:00:00
RHEL 4 : lha (Unpatched Vulnerability)
2024-06-03 00:00:00
openvas
openvas
Mandriva Update for lha MDKSA-2007:117 (lha)
2009-04-09 00:00:00
Mandriva Update for lha MDKSA-2007:117 (lha)
2009-04-09 00:00:00
securityvulns
securityvulns
lha symbolic links problem
2007-04-19 00:00:00
ubuntucve
ubuntucve
CVE-2007-2030
2007-04-16 00:00:00
CVSS2
4.9
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:C/I:N/A:N
AI Score
6.1
Confidence
Low
EPSS
0
Percentile
5.1%
Related for CVE-2007-2030