CVE-2005-3137

Currently unrated

Key Information:

Vendor: Gnu
Status: Cfengine
Vendor: CVE Published:; 5 October 2005

Summary

The (1) cfmailfilter and (2) cfcron.in files for cfengine 1.6.5 allow local users to overwrite arbitrary files via a symlink attack on temporary files, a different vulnerability than CVE-2005-2960.

References

http://bugs.gentoo.org/show_bug.cgi?id=107871

x_refsource_MISC

http://secunia.com/advisories/17040

third-party-advisoryx_refsource_SECUNIA

https://exchange.xforce.ibmcloud.com/vulnerabilities/22489

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Oct 5, 2005
Vulnerability Reserved
Oct 5, 2005