6.2

CVE-2005-0602

EPSS 0.11%
Published 02.05.2005 04:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

Unzip 5.51 and earlier does not properly warn the user when extracting setuid or setgid files, which may allow local users to gain privileges.

Affected products Warnungen 0 Metrics 2 CWE 0 References 14

Data is provided by the National Vulnerability Database (NVD)

Info-zip ≫ Unzip Version <= 5.51

Info-zip ≫ Unzip Version5.50

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.11%	0.301

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	6.2	1.9	10	AV:L/AC:H/Au:N/C:C/I:C/A:C

http://www.info-zip.org/FAQ.html

http://marc.info/?l=bugtraq&m=110960796331943&w=2

http://secunia.com/advisories/17045

http://secunia.com/advisories/17342

http://secunia.com/advisories/27684

http://sunsolve.sun.com/search/document.do?assetkey=1-26-103150-1

http://sunsolve.sun.com/search/document.do?assetkey=1-66-200844-1

http://www.mandriva.com/security/advisories?name=MDKSA-2005:197

http://www.securityfocus.com/bid/14447

http://www.trustix.org/errata/2005/0053/

http://www.vupen.com/english/advisories/2007/3866

https://nvd.nist.gov/vuln/detail/CVE-2005-0602

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2005-0602

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2005-0602

EUVD