 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| CVE ID: | CVE-2004-0966 |
| Description: | The (1) autopoint and (2) gettextize scripts in the GNU gettext package 1.14 and later versions, as used in Trustix Secure Linux 1.5 through 2.1 and other operating systems, allows local users to overwrite files via a symlink attack on temporary files. |
| Test IDs: | 1.3.6.1.4.1.25623.1.0.54701 1.3.6.1.4.1.25623.1.0.56603 1.3.6.1.4.1.25623.1.1.12.2004.5.1 1.3.6.1.4.1.25623.1.0.56096 |
| Cross References: |
Common Vulnerability Exposure (CVE) ID: CVE-2004-0966 BugTraq ID: 11282 http://www.securityfocus.com/bid/11282 http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00000.html http://www.gentoo.org/security/en/glsa/glsa-200410-10.xml http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2006:051 http://marc.info/?l=bugtraq&m=110382652226638&w=2 http://www.trustix.org/errata/2004/0050 https://www.ubuntu.com/usn/usn-5-1/ XForce ISS Database: script-temporary-file-overwrite(17583) https://exchange.xforce.ibmcloud.com/vulnerabilities/17583 |