Executive Summary

Informations
Name CVE-2005-3124 First vendor Publication 2005-11-06
Vendor Cve Last vendor Modification 2011-03-07

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:L/Au:N/C:N/I:P/A:N)
Cvss Base Score 2.1 Attack Range Local
Cvss Impact Score 2.9 Attack Complexity Low
Cvss Expoit Score 3.9 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

syslogtocern in Acme thttpd before 2.23 allows local users to write arbitrary files via a symlink attack on a temporary file.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3124

CPE : Common Platform Enumeration

TypeDescriptionCount
Application2

OpenVAS Exploits

DateDescription
2008-01-17Name : Debian Security Advisory DSA 883-1 (thttpd)
File : nvt/deb_883_1.nasl

Open Source Vulnerability Database (OSVDB)

idDescription
20510thttpd syslogtocern Symlink Arbitrary File Overwrite

Nessus® Vulnerability Scanner

DateDescription
2006-10-14Name : The remote Debian host is missing a security-related update.
File : debian_DSA-883.nasl - Type : ACT_GATHER_INFO

Internal Sources (Detail)

SourceUrl
BID http://www.securityfocus.com/bid/15320
DEBIAN http://www.debian.org/security/2005/dsa-883
SECUNIA http://secunia.com/advisories/17454
http://secunia.com/advisories/17472
VUPEN http://www.vupen.com/english/advisories/2005/2308

Alert History

If you want to see full details history, please login or register.
0
1
DateInformations
2014-02-17 10:33:04
  • Multiple Updates
2013-05-11 11:32:29
  • Multiple Updates