CVE Vulnerabilities

CVE-2004-0966

Published: Feb 09, 2005 | Modified: Jul 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
2.1 LOW
AV:L/AC:L/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu
UNTRIAGED

The (1) autopoint and (2) gettextize scripts in the GNU gettext package 1.14 and later versions, as used in Trustix Secure Linux 1.5 through 2.1 and other operating systems, allows local users to overwrite files via a symlink attack on temporary files.

Affected Software

Name Vendor Start Version End Version
Gettext Gnu 0.14.1 (including) 0.14.1 (including)
Gettext Ubuntu dapper *
Gettext Ubuntu devel *
Gettext Ubuntu edgy *
Gettext Ubuntu feisty *

References