Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 31/12/2004 Updated: 11/07/2017

CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9

VMScore: 215

Vector: AV:L/AC:L/Au:N/C:N/I:P/A:N

im-switch prior to 11.4-46.1 in Fedora Core 2 allows local users to overwrite arbitrary files via a symlink attack on the imswitcher[PID] temporary file.

Vulnerable Product	Search on Vulmon	Subscribe to Product
im-switch im-switch

source: wwwsecurityfocuscom/bid/10717/info IM-Switch Insecure Temporary File Handling Symbolic Link VulnerabilityIt is reported that im-switch is prone to a local insecure temporary file handling symbolic link vulnerability This issue is due to a design error that allows the application to insecurely write to a temporary file that is cre ...

NVD-CWE-Other http://packetstormsecurity.org/0407-advisories/fedora_im-switch_tempfile_race.txt http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=126940 http://www.securityfocus.com/bid/10717 http://www.osvdb.org/7772 http://secunia.com/advisories/12037 https://exchange.xforce.ibmcloud.com/vulnerabilities/16682 https://nvd.nist.gov https://www.exploit-db.com/exploits/24278/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2004-2502

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect