CVE-2005-4772

Currently unrated

Key Information:

Vendor: Suse
Status: Suse Sled Beagle; Suse Linux Standard Server; Suse Linux Openexchange Server; Suse Linux School Server
Vendor: CVE Published:; 31 December 2005

Summary

liby2util in Yet another Setup Tool (YaST) in SUSE Linux before 20051007 preserves permissions and ownerships when copying a remote repository, which might allow local users to read or modify sensitive files, possibly giving local users the ability to exploit CVE-2005-3013.

References

http://www.novell.com/linux/security/advisories/2005_22_s...

vendor-advisoryx_refsource_SUSE

http://www.securityfocus.com/bid/15026

vdb-entryx_refsource_BID

Timeline

Vulnerability Reserved
Apr 7, 2006
Vulnerability published
Dec 31, 2005