CVE Vulnerabilities

CVE-2004-0968

Published: Feb 09, 2005 | Modified: Oct 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
2.1 LOW
AV:L/AC:L/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

The catchsegv script in glibc 2.3.2 and earlier allows local users to overwrite files via a symlink attack on temporary files.

Affected Software

Name Vendor Start Version End Version
Glibc Gnu 2.2.2 2.2.2
Glibc Gnu 2.1.2 2.1.2
Glibc Gnu 2.0.5 2.0.5
Glibc Gnu 2.2.5 2.2.5
Glibc Gnu 2.0.6 2.0.6
Glibc Gnu 2.1.1 2.1.1
Glibc Gnu 2.0.3 2.0.3
Glibc Gnu 2.3.1 2.3.1
Glibc Gnu 2.3 2.3
Glibc Gnu 2.0 2.0
Glibc Gnu 2.1.1.6 2.1.1.6
Glibc Gnu 2.3.10 2.3.10
Glibc Gnu 2.1 2.1
Glibc Gnu 2.3.4 2.3.4
Glibc Gnu 2.1.9 2.1.9
Glibc Gnu 2.3.3 2.3.3
Glibc Gnu 2.0.1 2.0.1
Glibc Gnu 2.0.4 2.0.4
Glibc Gnu 2.0.2 2.0.2
Glibc Gnu 2.2.1 2.2.1
Glibc Gnu 2.3.2 2.3.2
Glibc Gnu 2.1.3.10 2.1.3.10
Glibc Gnu 2.2.3 2.2.3
Glibc Gnu 2.2.4 2.2.4
Glibc Gnu 2.1.3 2.1.3
Glibc Gnu 2.2 2.2

References