CVE Vulnerabilities

CVE-2004-0968

Published: Feb 09, 2005 | Modified: Oct 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
2.1 LOW
AV:L/AC:L/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

The catchsegv script in glibc 2.3.2 and earlier allows local users to overwrite files via a symlink attack on temporary files.

Affected Software

Name Vendor Start Version End Version
Glibc Gnu 2.0 2.0
Glibc Gnu 2.0.1 2.0.1
Glibc Gnu 2.0.2 2.0.2
Glibc Gnu 2.0.3 2.0.3
Glibc Gnu 2.0.4 2.0.4
Glibc Gnu 2.0.5 2.0.5
Glibc Gnu 2.0.6 2.0.6
Glibc Gnu 2.1 2.1
Glibc Gnu 2.1.1 2.1.1
Glibc Gnu 2.1.1.6 2.1.1.6
Glibc Gnu 2.1.2 2.1.2
Glibc Gnu 2.1.3 2.1.3
Glibc Gnu 2.1.3.10 2.1.3.10
Glibc Gnu 2.1.9 2.1.9
Glibc Gnu 2.2 2.2
Glibc Gnu 2.2.1 2.2.1
Glibc Gnu 2.2.2 2.2.2
Glibc Gnu 2.2.3 2.2.3
Glibc Gnu 2.2.4 2.2.4
Glibc Gnu 2.2.5 2.2.5
Glibc Gnu 2.3 2.3
Glibc Gnu 2.3.1 2.3.1
Glibc Gnu 2.3.2 2.3.2
Glibc Gnu 2.3.3 2.3.3
Glibc Gnu 2.3.4 2.3.4
Glibc Gnu 2.3.10 2.3.10
Red Hat Enterprise Linux 2.1 RedHat glibc *
Red Hat Enterprise Linux 3 RedHat glibc-0:2.3.2-95.30 *
Glibc Ubuntu dapper *
Glibc Ubuntu devel *
Glibc Ubuntu edgy *
Glibc Ubuntu feisty *

References