CVE-2005-2527

Опубликовано: 31 дек. 2005

Источник: nvd

CVSS2: 1.2

EPSS Низкий

Описание

Race condition in Java 1.4.2 before 1.4.2 Release 2 on Apple Mac OS X allows local users to corrupt files or create arbitrary files via unspecified attack vectors related to a temporary directory, possibly due to a symlink attack.

Ссылки

http://docs.info.apple.com/article.html?artnum=302266
http://lists.apple.com/archives/security-announce/2005/Sep/msg00001.html
http://secunia.com/advisories/16808
http://www.ciac.org/ciac/bulletins/p-306.shtml
http://www.securityfocus.com/bid/14825
http://www.vupen.com/english/advisories/2005/1734
https://exchange.xforce.ibmcloud.com/vulnerabilities/22262
http://docs.info.apple.com/article.html?artnum=302266
http://lists.apple.com/archives/security-announce/2005/Sep/msg00001.html
http://secunia.com/advisories/16808
http://www.ciac.org/ciac/bulletins/p-306.shtml
http://www.securityfocus.com/bid/14825
http://www.vupen.com/english/advisories/2005/1734
https://exchange.xforce.ibmcloud.com/vulnerabilities/22262

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:sun:java:*:*:*:*:*:*:*:*

Версия до 1.4.2_release1 (включая)

EPSS

Процентиль: 12%

0.00041

Низкий

1.2 Low

CVSS2

Дефекты

CWE-59

Связанные уязвимости

GHSA-7fqm-4mw8-jrhj

github

почти 4 года назад