liby2util in Yet another Setup Tool (YaST) in SUSE Linux before 20051007 preserves permissions and ownerships when copying a remote repository, which might allow local users to read or modify sensitive files, possibly giving local users the ability to exploit CVE-2005-3013.
References
Link | Resource |
---|---|
http://www.novell.com/linux/security/advisories/2005_22_sr.html | Patch Vendor Advisory |
http://www.securityfocus.com/bid/15026 | Patch |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
No history.
Information
Published : 2005-12-31 05:00
Updated : 2024-02-28 10:42
NVD link : CVE-2005-4772
Mitre link : CVE-2005-4772
CVE.ORG link : CVE-2005-4772
JSON object : View
Products Affected
suse
- suse_linux
- suse_linux_school_server
- suse_sled_beagle
- suse_linux_standard_server
- suse_linux_openexchange_server
CWE