CVE-2004-0969

EPSS 0.12%
Published 09.02.2005 05:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

The groffer script in the Groff package 1.18 and later versions, as used in Trustix Secure Linux 1.5 through 2.1, and possibly other operating systems, allows local users to overwrite files via a symlink attack on temporary files.

Affected products Warnungen 0 Metrics 2 CWE 0 References 10

Data is provided by the National Vulnerability Database (NVD)

Gnu ≫ Groff Version1.19

Gentoo ≫ Linux

Ubuntu ≫ Ubuntu Linux Version4.1 Editionia64

Ubuntu ≫ Ubuntu Linux Version4.1 Editionppc

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.12%	0.281

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	2.1	3.9	2.9	AV:L/AC:L/Au:N/C:N/I:P/A:N

http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2006:038

http://www.trustix.org/errata/2004/0050

https://exchange.xforce.ibmcloud.com/vulnerabilities/17583

http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=136313

http://secunia.com/advisories/18764

http://www.gentoo.org/security/en/glsa/glsa-200411-15.xml

Patch

Vendor Advisory

http://www.securityfocus.com/bid/11287

Patch

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2004-0969

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2004-0969

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2004-0969

EUVD