3.6
CVE-2005-4803
- EPSS 0.37%
- Veröffentlicht 31.12.2005 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:19:28
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
graphviz before 2.2.1 allows local users to overwrite arbitrary files via a symlink attack on temporary files. NOTE: this issue was originally associated with a different CVE identifier, CVE-2005-2965, which had been used for multiple different issues. This is the correct identifier.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.37% | 0.286 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 3.6 | 3.9 | 4.9 |
AV:L/AC:L/Au:N/C:N/I:P/A:P
|
http://secunia.com/advisories/17121
http://secunia.com/advisories/17125
http://secunia.com/advisories/17207
http://www.debian.org/security/2005/dsa-857
http://www.mandriva.com/security/advisories?name=MDKSA-2005:188
http://www.securityfocus.com/bid/15050
https://usn.ubuntu.com/208-1/