CVE-2005-1976

2006-06-0518:00:00

mitre

www.cve.org

novell netmail

3.5.2

security vulnerability

linux

arbitrary code

denial of service

AI Score

7.7

Confidence

High

EPSS

0.001

Percentile

44.3%

JSON

Novell NetMail 3.5.2a, 3.5.2b, and 3.5.2c, when running on Linux, sets the owner and group ID to 500 for certain files, which could allow users or groups with that ID to execute arbitrary code or cause a denial of service by modifying those files.

References

secunia.com/advisories/15763

securitytracker.com/id?1014251

support.novell.com/cgi-bin/search/searchtid.cgi?/10098022.htm

www.osvdb.org/17456

www.securityfocus.com/bid/14005