Описание
silc daemon (silcd.c) in Secure Internet Live Conferencing (SILC) 1.0 and earlier allows local users to overwrite arbitrary files via a symlink attack on the silcd.[PID].stats temporary file.
Ссылки
- Patch
- Patch
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:silc:secure_internet_live_conferencing:0.9.11:*:*:*:*:*:*:*
cpe:2.3:a:silc:secure_internet_live_conferencing:0.9.12:*:*:*:*:*:*:*
cpe:2.3:a:silc:secure_internet_live_conferencing:0.9.13:*:*:*:*:*:*:*
cpe:2.3:a:silc:secure_internet_live_conferencing:0.9.14:*:*:*:*:*:*:*
cpe:2.3:a:silc:secure_internet_live_conferencing:0.9.15:*:*:*:*:*:*:*
cpe:2.3:a:silc:secure_internet_live_conferencing:0.9.16:*:*:*:*:*:*:*
cpe:2.3:a:silc:secure_internet_live_conferencing:0.9.17:*:*:*:*:*:*:*
cpe:2.3:a:silc:secure_internet_live_conferencing:0.9.18:*:*:*:*:*:*:*
cpe:2.3:a:silc:secure_internet_live_conferencing:0.9.19:*:*:*:*:*:*:*
cpe:2.3:a:silc:secure_internet_live_conferencing:0.9.20:*:*:*:*:*:*:*
cpe:2.3:a:silc:secure_internet_live_conferencing:0.9.21:*:*:*:*:*:*:*
cpe:2.3:a:silc:secure_internet_live_conferencing:1.0:*:*:*:*:*:*:*
EPSS
Процентиль: 23%
0.00079
Низкий
2.1 Low
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
silc daemon (silcd.c) in Secure Internet Live Conferencing (SILC) 1.0 and earlier allows local users to overwrite arbitrary files via a symlink attack on the silcd.[PID].stats temporary file.
EPSS
Процентиль: 23%
0.00079
Низкий
2.1 Low
CVSS2
Дефекты
NVD-CWE-Other