CVE-2005-2960

Low

2.1/10

Summary

cfengine 1.6.5 and 2.1.16 allows local users to overwrite arbitrary files via a symlink attack on temporary files used by vicf.in, a different vulnerability than CVE-2005-3137.

Access Complexity: LOW
AccessVector: LOCAL
Authentication: NONE
Integrity Impact: PARTIAL
Confidentiality Impact: NONE
Availability Impact: NONE

References

Advisory Timeline

Published Oct 05, 2005

CVE-2005-2960

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS