← Back

CVE-2004-1377

nvd nist
Published: Dec 27, 2004Modified: Apr 16, 2026

JSON object

Loading...
2.1
Vector
AV:L/AC:L/Au:N/C:N/I:P/A:N
Exploitability: 3.9 / Impact: 2.9
Source: NVD

Description

The (1) fixps (aka fixps.in) and (2) psmandup (aka psmandup.in) scripts in a2ps before 4.13 allow local users to overwrite arbitrary files via a symlink attack on temporary files.

Affected (7)

Gnu
1 product
A2ps
Turbolinux
3 products
Turbolinux Home
Turbolinux Server
Turbolinux Workstation
Configuration A
2 vulnerable
Vulnerable SoftwareAffected Versions
Gnu
A2ps
Version 4.13
A2ps
Version 4.13b
Configuration B
5 vulnerable
Vulnerable SoftwareAffected Versions
Turbolinux Home
All versions
Turbolinux
Turbolinux Server
Version 7.0
Turbolinux Server
Version 8.0
Turbolinux
Turbolinux Workstation
Version 7.0
Turbolinux Workstation
Version 8.0

References (14)

Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Patch
Source: cve@mitre.org
Patch
Source: cve@mitre.org
Patch
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Patch
Source: af854a3a-2127-422b-91ae-364da2661108
Patch
Source: af854a3a-2127-422b-91ae-364da2661108
Patch
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.