Symlink Vulnerability in GNU a2ps Product by GNU
CVE-2004-1377

Currently unrated

Key Information:

Vendor

Gnu
Status
A2ps
Vendor
CVE Published:
27 December 2004

What is CVE-2004-1377?

The fixps and psmandup scripts in GNU a2ps version 4.12 and earlier are susceptible to a symlink attack that allows local users to overwrite arbitrary files. By exploiting this weakness, an attacker can create symlinks to sensitive files, gaining unauthorized access to modify or corrupt critical data, thus jeopardizing the system's integrity and security.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.gentoo.org/security/en/glsa/glsa-200501-02.xml
vendor-advisoryx_refsource_GENTOO
http://www.securityfocus.com/bid/12109
vdb-entryx_refsource_BID
http://www.vuxml.org/freebsd/9168253c-5a6d-11d9-a9e7-0001...
x_refsource_CONFIRM

Timeline

  • Vulnerability Reserved

  • Vulnerability published

JSON
.