Описание
KDE before 3.3.0 does not properly handle when certain symbolic links point to "stale" locations, which could allow local users to create or truncate arbitrary files.
KDE before 3.3.0 does not properly handle when certain symbolic links point to "stale" locations, which could allow local users to create or truncate arbitrary files.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2004-0689
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16963
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9334
- http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000864
- http://marc.info/?l=bugtraq&m=109225538901170&w=2
- http://secunia.com/advisories/12276
- http://security.gentoo.org/glsa/glsa-200408-13.xml
- http://www.debian.org/security/2004/dsa-539
- http://www.kde.org/info/security/advisory-20040811-1.txt
Связанные уязвимости
redhat
больше 21 года назад
KDE before 3.3.0 does not properly handle when certain symbolic links point to "stale" locations, which could allow local users to create or truncate arbitrary files.
CVSS3: 7.1
nvd
больше 21 года назад
KDE before 3.3.0 does not properly handle when certain symbolic links point to "stale" locations, which could allow local users to create or truncate arbitrary files.
CVSS3: 7.1
debian
больше 21 года назад
KDE before 3.3.0 does not properly handle when certain symbolic links ...