Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2003-1294

Опубликовано: 31 дек. 2003
Источник: nvd
CVSS2: 2.1
EPSS Низкий

Описание

Xscreensaver before 4.15 creates temporary files insecurely in (1) driver/passwd-kerberos.c, (2) driver/xscreensaver-getimage-video, (3) driver/xscreensaver.kss.in, and the (4) vidwhacker and (5) webcollage screensavers, which allows local users to overwrite arbitrary files via a symlink attack.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:xscreensaver:xscreensaver:4.05_5cl:*:*:*:*:*:*:*
cpe:2.3:a:xscreensaver:xscreensaver:4.05_6:*:*:*:*:*:*:*
cpe:2.3:a:xscreensaver:xscreensaver:4.05_6a:*:*:*:*:*:*:*
cpe:2.3:a:xscreensaver:xscreensaver:4.05_150:*:*:*:*:*:*:*
cpe:2.3:a:xscreensaver:xscreensaver:4.07_2:*:*:*:*:*:*:*
cpe:2.3:a:xscreensaver:xscreensaver:4.08_29135cl:*:*:*:*:*:*:*
cpe:2.3:a:xscreensaver:xscreensaver:4.09_0:*:*:*:*:*:*:*
cpe:2.3:a:xscreensaver:xscreensaver:4.10_4:*:*:*:*:*:*:*
cpe:2.3:a:xscreensaver:xscreensaver:4.10_6:*:*:*:*:*:*:*
cpe:2.3:a:xscreensaver:xscreensaver:4.10_8:*:*:*:*:*:*:*
cpe:2.3:a:xscreensaver:xscreensaver:4.10_15:*:*:*:*:*:*:*
cpe:2.3:a:xscreensaver:xscreensaver:4.11_0:*:*:*:*:*:*:*
cpe:2.3:a:xscreensaver:xscreensaver:4.12_58:*:*:*:*:*:*:*
cpe:2.3:a:xscreensaver:xscreensaver:4.12_62:*:*:*:*:*:*:*
cpe:2.3:a:xscreensaver:xscreensaver:4.14_0:*:*:*:*:*:*:*
cpe:2.3:a:xscreensaver:xscreensaver:4.14_2:*:*:*:*:*:*:*
cpe:2.3:a:xscreensaver:xscreensaver:4.14_4:*:*:*:*:*:*:*
cpe:2.3:a:xscreensaver:xscreensaver:4.14_5:*:*:*:*:*:*:*

EPSS

Процентиль: 28%
0.00099
Низкий

2.1 Low

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

redhat логотип

CVE-2003-1294

redhat
больше 21 года назад

Xscreensaver before 4.15 creates temporary files insecurely in (1) driver/passwd-kerberos.c, (2) driver/xscreensaver-getimage-video, (3) driver/xscreensaver.kss.in, and the (4) vidwhacker and (5) webcollage screensavers, which allows local users to overwrite arbitrary files via a symlink attack.

debian логотип

CVE-2003-1294

debian
больше 21 года назад

Xscreensaver before 4.15 creates temporary files insecurely in (1) dri ...

github логотип

GHSA-h4fc-76p7-v47h

github
больше 3 лет назад

Xscreensaver before 4.15 creates temporary files insecurely in (1) driver/passwd-kerberos.c, (2) driver/xscreensaver-getimage-video, (3) driver/xscreensaver.kss.in, and the (4) vidwhacker and (5) webcollage screensavers, which allows local users to overwrite arbitrary files via a symlink attack.

EPSS

Процентиль: 28%
0.00099
Низкий

2.1 Low

CVSS2

Дефекты

NVD-CWE-Other