← Back

CVE-2004-0996

nvd nist
Published: Jan 10, 2005Modified: Apr 16, 2026

JSON object

Loading...
2.1
Vector
AV:L/AC:L/Au:N/C:N/I:P/A:N
Exploitability: 3.9 / Impact: 2.9
Source: NVD

Description

main.c in cscope 15-4 and 15-5 creates temporary files with predictable filenames, which allows local users to overwrite arbitrary files via a symlink attack.

Affected (21)

Products: Cscope: Cscope · Debian: Debian Linux · Gentoo: Linux · +1 more
Show all products
Cscope: Cscope · Debian: Debian Linux · Gentoo: Linux · Sco: Unixware
Cscope
1 product
Cscope
Debian
1 product
Debian Linux
Gentoo
1 product
Linux
Sco
1 product
Unixware
Configuration A
5 vulnerable
Vulnerable SoftwareAffected Versions
Cscope
Cscope
Version 13.0
Cscope
Version 15.1
Cscope
Version 15.3
Cscope
Version 15.4
Cscope
Version 15.5
Configuration B
16 vulnerable
Vulnerable SoftwareAffected Versions
Debian
Debian Linux
Version 3.0
Debian Linux
Version 3.0
Debian Linux
Version 3.0
Debian Linux
Version 3.0
Debian Linux
Version 3.0
Debian Linux
Version 3.0
Debian Linux
Version 3.0
Debian Linux
Version 3.0
Debian Linux
Version 3.0
Debian Linux
Version 3.0
Debian Linux
Version 3.0
Debian Linux
Version 3.0
Linux
All versions
Sco
Unixware
Version 7.1.1
Unixware
Version 7.1.3
Unixware
Version 7.1.4

References (26)

Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
ExploitPatchVendor Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitPatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.