CVE-2004-0967 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2004-0967
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2004-0967

Description: The (1) pj-gs.sh, (2) ps2epsi, (3) pv.sh, and (4) sysvlp.sh scripts in the ESP Ghostscript (espgs) package in Trustix Secure Linux 1.5 through 2.1, and other operating systems, allow local users to overwrite files via a symlink attack on temporary files.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/17583 UBUNTU http://marc.theaimsgroup.com/?l=bugtraq&m=109900135814990&w=2 TRUSTIX http://www.trustix.org/errata/2004/0050 SCO SAID Secunia Advisory: SA17135 Secunia Advisory: SA16997 Secunia Advisory: SA20056 Secunia Advisory: SA19799 REDHAT http://www.redhat.com/support/errata/RHSA-2005-081.html CONFIRM http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=136321 BID 11285

Return to the previous page.