CVE-2004-0581

Published: Aug 6, 2004Modified: Apr 16, 2026

4.6

Vector

AV:L/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 3.9 / Impact: 6.4

Source: NVD

Description

ksymoops-gznm script in Mandrake Linux 9.1 through 10.0, and Corporate Server 2.1, allows local users to delete arbitrary files via a symlink attack on files in /tmp.

Affected (11)

Products: Gnu: Ksymoops · Mandrakesoft: Mandrake Linux, Mandrake Linux Corporate Server

1 product

2 products

Mandrake Linux Corporate Server

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Gnu Ksymoops	Version 2.4.5
Gnu Ksymoops	Version 2.4.8
Gnu Ksymoops	Version 2.4.9

Configuration B

8 vulnerable

Vulnerable Software	Affected Versions
Mandrakesoft Mandrake Linux	Version 10.0
Mandrakesoft Mandrake Linux	Version 10.0
Mandrakesoft Mandrake Linux	Version 9.1
Mandrakesoft Mandrake Linux	Version 9.1
Mandrakesoft Mandrake Linux	Version 9.2
Mandrakesoft Mandrake Linux	Version 9.2
Mandrakesoft Mandrake Linux Corporate Server	Version 2.1
Mandrakesoft Mandrake Linux Corporate Server	Version 2.1

References (6)

http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:060

Source: cve@mitre.org

http://www.securityfocus.com/bid/10516

Source: cve@mitre.org

PatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/16392

Source: cve@mitre.org

http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:060

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/10516

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/16392

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.