Executive Summary

Informations
NameCVE-2005-3124First vendor Publication2005-11-06
VendorCveLast vendor Modification2011-03-07

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:L/Au:N/C:N/I:P/A:N)
Cvss Base Score2.1Attack RangeLocal
Cvss Impact Score2.9Attack ComplexityLow
Cvss Expoit Score3.9AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

syslogtocern in Acme thttpd before 2.23 allows local users to write arbitrary files via a symlink attack on a temporary file.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3124

CPE : Common Platform Enumeration

TypeDescriptionCount
Application2

OpenVAS Exploits

DateDescription
2008-01-17Name : Debian Security Advisory DSA 883-1 (thttpd)
File : nvt/deb_883_1.nasl

Open Source Vulnerability Database (OSVDB)

idDescription
20510thttpd syslogtocern Symlink Arbitrary File Overwrite

Nessus® Vulnerability Scanner

DateDescription
2006-10-14Name : The remote Debian host is missing a security-related update.
File : debian_DSA-883.nasl - Type : ACT_GATHER_INFO

Internal Sources (Detail)

SourceUrl
BIDhttp://www.securityfocus.com/bid/15320
DEBIANhttp://www.debian.org/security/2005/dsa-883
SECUNIAhttp://secunia.com/advisories/17454
http://secunia.com/advisories/17472
VUPENhttp://www.vupen.com/english/advisories/2005/2308

Alert History

If you want to see full details history, please login or register.
0
1
DateInformations
2014-02-17 10:33:04
  • Multiple Updates
2013-05-11 11:32:29
  • Multiple Updates