Описание
gen-index in GNATS 4.0, 4.1.0, and possibly earlier versions, when installed setuid, does not properly check files passed to the -o argument and opens the file with write access, which allows local users to overwrite arbitrary files.
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:gnu:gnats:4.0:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnats:4.1.0:*:*:*:*:*:*:*
EPSS
Процентиль: 21%
0.00068
Низкий
2.1 Low
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
debian
около 20 лет назад
gen-index in GNATS 4.0, 4.1.0, and possibly earlier versions, when ins ...
github
больше 3 лет назад
gen-index in GNATS 4.0, 4.1.0, and possibly earlier versions, when installed setuid, does not properly check files passed to the -o argument and opens the file with write access, which allows local users to overwrite arbitrary files.
EPSS
Процентиль: 21%
0.00068
Низкий
2.1 Low
CVSS2
Дефекты
NVD-CWE-Other