CVE Vulnerabilities

CVE-2005-1740

Published: May 24, 2005 | Modified: Oct 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
10 HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

fixproc in Net-snmp 5.x before 5.2.1-r1 creates temporary files insecurely, which allows local users to modify the contents of those files to execute arbitrary commands, or overwrite arbitrary files via a symlink attack.

Affected Software

Name Vendor Start Version End Version
Net-snmp Net-snmp 5.0.1 5.0.1
Net-snmp Net-snmp 5.0.3 5.0.3
Net-snmp Net-snmp 5.0.4_pre2 5.0.4_pre2
Net-snmp Net-snmp 5.0.5 5.0.5
Net-snmp Net-snmp 5.0.6 5.0.6
Net-snmp Net-snmp 5.0.7 5.0.7
Net-snmp Net-snmp 5.0.8 5.0.8
Net-snmp Net-snmp 5.0.9 5.0.9
Net-snmp Net-snmp 5.1.2 5.1.2
Red Hat Enterprise Linux 3 RedHat net-snmp-0:5.0.9-2.30E.19 *
Red Hat Enterprise Linux 4 RedHat net-snmp-0:5.1.2-11.EL4.6 *

References