Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 27/12/2005 Updated: 11/07/2017

CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9

VMScore: 187

Vector: AV:L/AC:L/Au:N/C:N/I:P/A:N

DHIS tools DNS package (dhis-tools-dns) prior to 5.0 allows local users to overwrite arbitrary files via a symlink attack on temporary files created by (1) register-q.sh and (2) register-p.sh.

Vulnerable Product	Search on Vulmon	Subscribe to Product
dhis tools dns package

Javier Fernández-Sanguino Peña from the Debian Security Audit project discovered that two scripts in the dhis-tools-dns package, DNS configuration utilities for a dynamic host information System, which are usually executed by root, create temporary files in an insecure fashion The old stable distribution (woody) does not contain a dhis-tools-dns ...

NVD-CWE-Other http://www.debian.org/security/2005/dsa-928 http://www.securityfocus.com/bid/16065 http://secunia.com/advisories/18228 http://secunia.com/advisories/18227 http://www.osvdb.org/21935 http://www.osvdb.org/21934 https://exchange.xforce.ibmcloud.com/vulnerabilities/23859 https://nvd.nist.gov https://www.debian.org/security/./dsa-928

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2005-3341

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect