Local File Manipulation Vulnerability in GNU Gnump3d by Free Software Foundation
CVE-2005-3349

Currently unrated

Key Information:

Vendor: Gnu
Status: Gnump3d
Vendor: CVE Published:; 18 November 2005

Summary

GNU Gnump3d, prior to version 2.9.8, is susceptible to a local file manipulation vulnerability that permits attackers to exploit symlink attacks targeting the index.lok temporary file. This vulnerability enables local users to modify or delete arbitrary files, potentially compromising system integrity and data availability.

References

http://www.novell.com/linux/security/advisories/2005_28_s...

vendor-advisoryx_refsource_SUSE

http://www.securityfocus.com/bid/15497

vdb-entryx_refsource_BID

http://secunia.com/advisories/17647

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Nov 18, 2005
Vulnerability Reserved
Oct 27, 2005