CVE-2005-1976

Sažetak

Novell NetMail 3.5.2a, 3.5.2b, and 3.5.2c, when running on Linux, sets the owner and group ID to 500 for certain files, which could allow users or groups with that ID to execute arbitrary code or cause a denial of service by modifying those files.

Reference

http://secunia.com/advisories/15763
http://securitytracker.com/id?1014251
http://support.novell.com/cgi-bin/search/searchtid.cgi?/10098022.htm
http://www.osvdb.org/17456
http://www.securityfocus.com/bid/14005

CVSS

Base:	1.7
Impact:	2.9
Exploitability:	3.1

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	NONE	PARTIAL

CVSS vektor

AV:L/AC:L/Au:S/C:N/I:N/A:P

Zadnje važnije ažuriranje

05-09-2008 - 20:50

Objavljeno

31-12-2005 - 05:00