← voltar
CVE-2005-0953

CVE-2005-0953

EPSS 0.4%
Race condition in bzip2 1.0.2 and earlier allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by bzip2 after the decompression is complete.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2008-004.txt.ascftp://patches.sgi.com/support/free/security/advisories/20060301-01.U.aschttp://docs.info.apple.com/article.html?artnum=307041http://lists.apple.com/archives/security-announce/2007/Nov/msg00002.htmlhttp://marc.info/?l=bugtraq&m=111229375217633&w=2http://secunia.com/advisories/19183http://secunia.com/advisories/27274http://secunia.com/advisories/27643http://secunia.com/advisories/29940https://exchange.xforce.ibmcloud.com/vulnerabilities/19926https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10902https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1154