CVE-2005-1941

Опубликовано: 08 июн. 2005

Источник: nvd

CVSS3: 7.8

CVSS2: 3.7

EPSS Низкий

Описание

SilverCity before 0.9.5-r1 installs (1) cgi-styler-form.py, (2) cgi-styler.py, and (3) source2html.py with read and write world permissions, which allows local users to execute arbitrary code.

Ссылки

http://bugs.gentoo.org/show_bug.cgi?id=93558
Issue Tracking
http://secunia.com/advisories/15632
Broken Link
http://securitytracker.com/id?1014153
Broken Link
Third Party Advisory
VDB Entry
http://www.gentoo.org/security/en/glsa/glsa-200506-05.xml
Third Party Advisory
http://bugs.gentoo.org/show_bug.cgi?id=93558
Issue Tracking
http://secunia.com/advisories/15632
Broken Link
http://securitytracker.com/id?1014153
Broken Link
Third Party Advisory
VDB Entry
http://www.gentoo.org/security/en/glsa/glsa-200506-05.xml
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:silvercity_project:silvercity:*:*:*:*:*:*:*:*

Версия до 0.9.5_r1 (исключая)

EPSS

Процентиль: 34%

0.00137

Низкий

7.8 High

CVSS3

3.7 Low

CVSS2

Дефекты

CWE-276

Связанные уязвимости

GHSA-43mp-rw63-xf4q