Lucene search
MitreCVE-2007-3916HistorySep 24, 2007 - 12:17 a.m.
CVE-2007-3916
2007-09-2400:17:00
CWE-59
mitre
web.nvd.nist.gov
29
cve-2007-3916
skk tools
symlink attack
file overwrite
file deletion
local user
vulnerability
nvd
CVSS2
4.4
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:P/I:P/A:P
AI Score
6.1
Confidence
Low
EPSS
0
Percentile
5.1%
The main function in skkdic-expr.c in SKK Tools 1.2 allows local users to overwrite or delete arbitrary files via a symlink attack on a skkdic$PID temporary file.
Affected configurations
Node
skk_openlabskk_toolsMatch1.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| skk_openlab | skk_tools | 1.2 | cpe:2.3:a:skk_openlab:skk_tools:1.2:*:*:*:*:*:*:* |
Related
debiancve
debiancve
CVE-2007-3916
2007-09-24 00:17:00
gentoo
gentoo
SKK Tools: Insecure temporary file creation
2007-10-12 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200710-10 (skktools)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200710-10 (skktools)
2008-09-24 00:00:00
nvd
nvd
CVE-2007-3916
2007-09-24 00:17:00
prion
prion
Design/Logic Flaw
2007-09-24 00:17:00
nessus
nessus
GLSA-200710-10 : SKK Tools: Insecure temporary file creation
2007-10-15 00:00:00
ubuntucve
ubuntucve
CVE-2007-3916
2007-09-24 00:00:00
cvelist
cvelist
CVE-2007-3916
2007-09-24 00:00:00
CVSS2
4.4
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:P/I:P/A:P
AI Score
6.1
Confidence
Low
EPSS
0
Percentile
5.1%
Related for CVE-2007-3916