Lucene search
Redhat.comRH:CVE-2004-1377HistoryOct 30, 2015 - 9:54 a.m.
CVE-2004-1377
2015-10-3009:54:14
redhat.com
access.redhat.com
13
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
AI Score
6.7
Confidence
High
EPSS
0
Percentile
5.1%
The (1) fixps (aka fixps.in) and (2) psmandup (aka psmandup.in) scripts in a2ps before 4.13 allow local users to overwrite arbitrary files via a symlink attack on temporary files.
Related
nessus
nessus
FreeBSD : a2ps -- insecure temporary file creation (9168253c-5a6d-11d9-a9e7-0001020eed82)
2005-07-13 00:00:00
Mandrake Linux Security Advisory : a2ps (MDKSA-2005:097)
2005-06-08 00:00:00
GLSA-200501-02 : a2ps: Multiple vulnerabilities
2005-02-14 00:00:00
cvelist
cvelist
CVE-2004-1377
2005-01-19 05:00:00
debiancve
debiancve
CVE-2004-1377
2005-01-19 05:00:00
ubuntucve
ubuntucve
CVE-2004-1377
2004-12-27 00:00:00
openvas
openvas
FreeBSD Ports: a2ps-a4, a2ps-letter, a2ps-letterdj
2008-09-04 00:00:00
FreeBSD Ports: a2ps-a4, a2ps-letter, a2ps-letterdj
2008-09-04 00:00:00
nvd
nvd
CVE-2004-1377
2004-12-27 05:00:00
cve
cve
CVE-2004-1377
2005-01-19 05:00:00
freebsd
freebsd
a2ps -- insecure temporary file creation
2004-12-27 00:00:00
osv
osv
a2ps-4.14-6.6 on GA media
2024-06-15 00:00:00
gentoo
gentoo
a2ps: Multiple vulnerabilities
2005-01-04 00:00:00
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
AI Score
6.7
Confidence
High
EPSS
0
Percentile
5.1%
Related for RH:CVE-2004-1377