CVE-2004-0996 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2004-0996
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2004-0996

Description: main.c in cscope 15-4 and 15-5 creates temporary files with predictable filenames, which allows local users to overwrite arbitrary files via a symlink attack.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/18125 SAID Secunia Advisory: SA26235 GENTOO http://www.gentoo.org/security/en/glsa/glsa-200412-11.xml DEBIAN http://www.debian.org/security/2004/dsa-610 CONFIRM http://docs.info.apple.com/article.html?artnum=306172 BUGTRAQ http://marc.theaimsgroup.com/?l=bugtraq&m=110133485519690&w=2 http://www.securityfocus.com/archive/1/381611 http://www.securityfocus.com/archive/1/381506 http://www.securityfocus.com/archive/1/381443 BID 11697 25159 APPLE http://lists.apple.com/archives/security-announce//2007/Jul/msg00004.html

Return to the previous page.