CVE-2005-0365 - The dcopidlng script in KDE 3.2.x and 3.3.x creates temporary files with predictable filenames, whic

CVE-2005-0365

Summary

The dcopidlng script in KDE 3.2.x and 3.3.x creates temporary files with predictable filenames, which allows local users to overwrite arbitrary files via a symlink attack.

References

Vulnerable Configurations

cpe:2.3:o:kde:kde:3.2.x:*:*:*:*:*:*:*
cpe:2.3:o:kde:kde:3.2.x:*:*:*:*:*:*:*
cpe:2.3:o:kde:kde:3.3.x:*:*:*:*:*:*:*
cpe:2.3:o:kde:kde:3.3.x:*:*:*:*:*:*:*

CVSS

Base:	2.1 (as of 11-10-2017 - 01:29)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	PARTIAL	NONE

cvss-vector via4

AV:L/AC:L/Au:N/C:N/I:P/A:N

oval via4

accepted

2013-04-29T04:07:39.700-04:00

class

vulnerability

contributors

name Aharon Chernin
organization SCAP.com, LLC
name Dragos Prisaca
organization G2, Inc.

definition_extensions

comment The operating system installed on the system is Red Hat Enterprise Linux 4
oval oval:org.mitre.oval:def:11831
comment CentOS Linux 4.x
oval oval:org.mitre.oval:def:16636
comment Oracle Linux 4.x
oval oval:org.mitre.oval:def:15990

description

The dcopidlng script in KDE 3.2.x and 3.3.x creates temporary files with predictable filenames, which allows local users to overwrite arbitrary files via a symlink attack.

family

unix

oval:org.mitre.oval:def:10676

status

accepted

submitted

2010-07-09T03:56:16-04:00

title

The updatePosition function in lib/xmltok_impl.c in libexpat in Expat 2.0.1, as used in Python, PyXML, w3c-libwww, and other software, allows context-dependent attackers to cause a denial of service (application crash) via an XML document with crafted UTF-8 sequences that trigger a buffer over-read, a different vulnerability than CVE-2009-2625.

version

redhat via4

advisories

rhsa

id	RHSA-2005:325

rpms

kdelibs-6:3.3.1-3.6
kdelibs-debuginfo-6:3.3.1-3.6
kdelibs-devel-6:3.3.1-3.6

refmap via4

bugtraq	20050211 insecure temporary file creation in kdelibs 3.3.2
confirm	http://bugs.kde.org/show_bug.cgi?id=97608 http://www.kde.org/info/security/advisory-20050316-2.txt
fedora	FEDORA-2005-245
gentoo	GLSA-200503-14
mandrake	MDKSA-2005:045 MDKSA-2005:058
sectrack	1013525
secunia	14254

Last major update

11-10-2017 - 01:29

Published

02-05-2005 - 04:00

Last modified

11-10-2017 - 01:29