Lucene search

[email protected]NVD:CVE-2007-3916

HistorySep 24, 2007 - 12:17 a.m.

CVE-2007-3916

2007-09-2400:17:00

CWE-59

[email protected]

web.nvd.nist.gov

CVSS2

4.4

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

AI Score

6.2

Confidence

Low

EPSS

Percentile

5.1%

JSON

The main function in skkdic-expr.c in SKK Tools 1.2 allows local users to overwrite or delete arbitrary files via a symlink attack on a skkdic$PID temporary file.

Affected configurations

Nvd

Node

skk_openlabskk_toolsMatch1.2

VendorProductVersionCPE
skk_openlabskk_tools1.2cpe:2.3:a:skk_openlab:skk_tools:1.2:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
skk_openlab	skk_tools	1.2	cpe:2.3:a:skk_openlab:skk_tools:1.2:::::::*

References

bugs.gentoo.org/show_bug.cgi?id=193121

osvdb.org/40557

secunia.com/advisories/26866

secunia.com/advisories/27247

security-tracker.debian.net/tracker/CVE-2007-3916

security.gentoo.org/glsa/glsa-200710-10.xml

www.securityfocus.com/bid/25739

exchange.xforce.ibmcloud.com/vulnerabilities/36699

CVSS2

4.4

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

AI Score

6.2

Confidence

Low

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2007-3916

debiancve1 cve1 gentoo1 openvas2 prion1 nessus1 ubuntucve1 cvelist1