Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2005-4889

Опубликовано: 01 июн. 2010
Источник: redhat
CVSS2: 1.9
EPSS Низкий

Описание

lib/fsm.c in RPM before 4.4.3 does not properly reset the metadata of an executable file during deletion of the file in an RPM package removal, which might allow local users to gain privileges by creating a hard link to a vulnerable (1) setuid or (2) setgid file, a related issue to CVE-2010-2059.

Ссылки на источники

Дополнительная информация

Статус:

Moderate
https://bugzilla.redhat.com/show_bug.cgi?id=625756rpm: fails to drop SUID/SGID bits on package removal

EPSS

Процентиль: 14%
0.00047
Низкий

1.9 Low

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2005-4889

ubuntu
около 15 лет назад

lib/fsm.c in RPM before 4.4.3 does not properly reset the metadata of an executable file during deletion of the file in an RPM package removal, which might allow local users to gain privileges by creating a hard link to a vulnerable (1) setuid or (2) setgid file, a related issue to CVE-2010-2059.

nvd логотип

CVE-2005-4889

nvd
около 15 лет назад

lib/fsm.c in RPM before 4.4.3 does not properly reset the metadata of an executable file during deletion of the file in an RPM package removal, which might allow local users to gain privileges by creating a hard link to a vulnerable (1) setuid or (2) setgid file, a related issue to CVE-2010-2059.

debian логотип

CVE-2005-4889

debian
около 15 лет назад

lib/fsm.c in RPM before 4.4.3 does not properly reset the metadata of ...

github логотип

GHSA-pfqv-vjx4-pmxj

github
около 3 лет назад

lib/fsm.c in RPM before 4.4.3 does not properly reset the metadata of an executable file during deletion of the file in an RPM package removal, which might allow local users to gain privileges by creating a hard link to a vulnerable (1) setuid or (2) setgid file, a related issue to CVE-2010-2059.

fstec логотип

BDU:2015-06484

fstec
почти 15 лет назад

Уязвимости операционной системы Red Hat Enterprise Linux, позволяющие удаленному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации

EPSS

Процентиль: 14%
0.00047
Низкий

1.9 Low

CVSS2