Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2005-2475
Description:Race condition in Unzip 5.52 allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by Unzip after the decompression is complete.
Test IDs: 1.3.6.1.4.1.25623.1.0.55500   1.3.6.1.4.1.25623.1.0.55481   1.3.6.1.4.1.25623.1.0.55899   1.3.6.1.4.1.25623.1.0.56143   1.3.6.1.4.1.25623.1.0.55306   1.3.6.1.4.1.25623.1.0.56166  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2005-2475
BugTraq ID: 14450
http://www.securityfocus.com/bid/14450
Bugtraq: 20050801 unzip TOCTOU file-permissions vulnerability (Google Search)
http://marc.info/?l=bugtraq&m=112300046224117&w=2
Debian Security Information: DSA-903 (Google Search)
http://www.debian.org/security/2005/dsa-903
http://www.mandriva.com/security/advisories?name=MDKSA-2005:197
http://www.osvdb.org/18530
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9975
RedHat Security Advisories: RHSA-2007:0203
http://www.redhat.com/support/errata/RHSA-2007-0203.html
SCO Security Bulletin: SCOSA-2005.39
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.39/SCOSA-2005.39.txt
http://secunia.com/advisories/16309
http://secunia.com/advisories/16985
http://secunia.com/advisories/17006
http://secunia.com/advisories/17045
http://secunia.com/advisories/17342
http://secunia.com/advisories/17653
http://secunia.com/advisories/25098
http://securityreason.com/securityalert/32
http://www.trustix.org/errata/2005/0053/
http://www.ubuntu.com/usn/usn-191-1




© 1998-2024 E-Soft Inc. All rights reserved.