CVE-2005-3580

Опубликовано: 16 нояб. 2005

Источник: nvd

CVSS2: 7.2

EPSS Низкий

Описание

QDBM before 1.8.33-r2 allows local users in the portage group to increase privileges via a shared object in the Portage temporary build directory, which is added to the search path allowing objects in it to be loaded at runtime.

Ссылки

http://secunia.com/advisories/17427/
Patch
Vendor Advisory
http://www.gentoo.org/security/en/glsa/glsa-200511-02.xml
Patch
Vendor Advisory
http://www.osvdb.org/20527
http://www.securityfocus.com/bid/15120
http://www.vupen.com/english/advisories/2005/2281
http://secunia.com/advisories/17427/
Patch
Vendor Advisory
http://www.gentoo.org/security/en/glsa/glsa-200511-02.xml
Patch
Vendor Advisory
http://www.osvdb.org/20527
http://www.securityfocus.com/bid/15120
http://www.vupen.com/english/advisories/2005/2281

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:qdbm:qdbm:1.8.13:*:*:*:*:*:*:*

cpe:2.3:a:qdbm:qdbm:1.8.14:*:*:*:*:*:*:*

cpe:2.3:a:qdbm:qdbm:1.8.15:*:*:*:*:*:*:*

cpe:2.3:a:qdbm:qdbm:1.8.16:*:*:*:*:*:*:*

cpe:2.3:a:qdbm:qdbm:1.8.17:*:*:*:*:*:*:*

cpe:2.3:a:qdbm:qdbm:1.8.21:*:*:*:*:*:*:*

cpe:2.3:a:qdbm:qdbm:1.8.24:*:*:*:*:*:*:*

cpe:2.3:a:qdbm:qdbm:1.8.30:*:*:*:*:*:*:*

cpe:2.3:a:qdbm:qdbm:1.8.31:*:*:*:*:*:*:*

EPSS

Процентиль: 17%

0.00055

Низкий

7.2 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

CVE-2005-3580

debian

около 20 лет назад

QDBM before 1.8.33-r2 allows local users in the portage group to incre ...

GHSA-jfjq-8hph-jc4g

github

больше 3 лет назад