SecuritySpace - CVE-2005-4889

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2005-4889

Description: lib/fsm.c in RPM before 4.4.3 does not properly reset the metadata of an executable file during deletion of the file in an RPM package removal, which might allow local users to gain privileges by creating a hard link to a vulnerable (1) setuid or (2) setgid file, a related issue to CVE-2010-2059.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2005-4889
http://www.mandriva.com/security/advisories?name=MDVSA-2010:180
XForce ISS Database: rpm-setgid-privilege-escalation(59426)
https://exchange.xforce.ibmcloud.com/vulnerabilities/59426

CVE ID:	CVE-2005-4889
Description:	lib/fsm.c in RPM before 4.4.3 does not properly reset the metadata of an executable file during deletion of the file in an RPM package removal, which might allow local users to gain privileges by creating a hard link to a vulnerable (1) setuid or (2) setgid file, a related issue to CVE-2010-2059.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2005-4889 http://www.mandriva.com/security/advisories?name=MDVSA-2010:180 XForce ISS Database: rpm-setgid-privilege-escalation(59426) https://exchange.xforce.ibmcloud.com/vulnerabilities/59426