CVE-2005-3343

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2005-3343
tkdiff before 4.1.1 allows local users to overwrite arbitrary files via a symlink attack on temporary files.

4.6 /10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:L/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 3.9 / Impact : 6.4

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References
Link Resource
http://secunia.com/advisories/18083 Patch Vendor Advisory
http://secunia.com/advisories/18215
http://securitytracker.com/id?1015421
http://sourceforge.net/project/shownotes.php?release_id=380030&group_id=64960
http://www.debian.org/security/2005/dsa-927 Patch
http://www.mandriva.com/security/advisories?name=MDKSA-2006:001
http://www.osvdb.org/21933 Patch
http://www.securityfocus.com/bid/16064 Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/23858
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:tkdiff:tkdiff:3.0.8:*:*:*:*:*:*:*
cpe:2.3:a:tkdiff:tkdiff:3.0.9:*:*:*:*:*:*:*
cpe:2.3:a:tkdiff:tkdiff:4.0:*:*:*:*:*:*:*
cpe:2.3:a:tkdiff:tkdiff:4.0.2:*:*:*:*:*:*:*
cpe:2.3:a:tkdiff:tkdiff:4.1:*:*:*:*:*:*:*
History

No history.

Information

Published : 2005-12-27 23:03

Updated : 2024-02-28 10:42

NVD link : CVE-2005-3343

Mitre link : CVE-2005-3343

CVE.ORG link : CVE-2005-3343

JSON object : View

Products Affected

tkdiff

  • tkdiff
CWE
NVD-CWE-Other

NetmanageIT Website NetmanageIT OSINT Web NetmanageIT OpenCTI NetmanageIT PDF Tools NetmanageIT CTO Corner Blog NetmanageIT Email Header Analyzer NetmanageIT Password Pusher NetmanageIT Internet Health and Latency Dashboard NetmanageIT Dedicated Speed Test Site NetmanageIT Ubuntu Mirror 10Gbps Copyright OpenCVE 2024