CVE-2005-1917 : kpopper 1.0 and earlier allows local users to create and overwrite arbitrary fil

kpopper 1.0 and earlier allows local users to create and overwrite arbitrary files via a symlink attack on the .popper-new temporary file.

Published 2005-07-05 04:00:00

Updated 2008-09-05 20:50:26

Source Red Hat, Inc.

View at NVD, CVE.org

Products affected by CVE-2005-1917

Kpopper » Kpopper » Version: 1.0
cpe:2.3:a:kpopper:kpopper:1.0:*:*:*:*:*:*:*
Matching versions

EPSS FAQ

0.06%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 15 %

Percentile, the proportion of vulnerabilities that are scored at or less

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
2.1	LOW	AV:L/AC:L/Au:N/C:N/I:P/A:N	3.9	2.9	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: Partial Availability Impact: None

Jump to