CVE-2005-1914

Опубликовано: 18 июл. 2005

Источник: nvd

CVSS2: 2.1

EPSS Низкий

Описание

CenterICQ 4.20.0 and earlier creates temporary files with predictable file names, which allows local users to overwrite arbitrary files via a symlink attack on the gg.token.PID temporary file.

Ссылки

http://www.debian.org/security/2005/dsa-754
Patch
Vendor Advisory
http://www.securityfocus.com/bid/14144
http://www.zataz.net/adviso/centericq-06152005.txt
Vendor Advisory
http://www.debian.org/security/2005/dsa-754
Patch
Vendor Advisory
http://www.securityfocus.com/bid/14144
http://www.zataz.net/adviso/centericq-06152005.txt
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:centericq:centericq:4.5.0.3:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.5.1:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.5.1.3:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.6.0:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.6.0.3:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.6.5:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.6.5.3:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.6.9:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.6.9.3:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.7.1:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.7.1.3:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.7.2:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.7.2.3:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.7.7:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.7.7.3:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.7.8:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.7.8.3:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.8.0:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.8.0.1:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.8.2:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.8.2.1:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.8.3:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.8.3.1:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.8.4:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.8.4.1:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.8.5:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.8.5.1:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.8.6:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.8.6.1:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.8.7:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.8.7.1:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.8.8:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.8.8.1:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.8.9:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.9.0:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.9.0.1:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.9.1:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.9.1.1:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.9.2:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.9.2.1:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.9.3:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.9.3.1:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.9.4:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.9.4.1:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.9.5:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.9.5.1:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.9.6:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.9.6.1:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.9.7:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.9.7.1:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.9.8:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.9.9:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.9.9.1:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.9.10:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.9.10.1:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.9.11:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.9.11.1:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.9.12:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.9.12.1:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.10.0.1:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.11.0.1:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.12:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.12.0.1:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.13:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.13.0.1:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.14:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.14.0.1:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.20:*:*:*:*:*:*:*

cpe:2.3:a:centericq:centericq:4.20.0.1:*:*:*:*:*:*:*

EPSS

Процентиль: 40%

0.00182

Низкий

2.1 Low

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

CVE-2005-1914

ubuntu

больше 20 лет назад

CenterICQ 4.20.0 and earlier creates temporary files with predictable file names, which allows local users to overwrite arbitrary files via a symlink attack on the gg.token.PID temporary file.

CVE-2005-1914

debian

больше 20 лет назад

CenterICQ 4.20.0 and earlier creates temporary files with predictable ...

GHSA-gx4g-jw36-g8hj

github

больше 3 лет назад

CenterICQ 4.20.0 and earlier creates temporary files with predictable file names, which allows local users to overwrite arbitrary files via a symlink attack on the gg.token.PID temporary file.

EPSS

Процентиль: 40%

0.00182

Низкий

2.1 Low

CVSS2

Дефекты

NVD-CWE-Other