CVE-2005-2809

silc daemon (silcd.c) in Secure Internet Live Conferencing (SILC) 1.0 and earlier allows local users to overwrite arbitrary files via a symlink attack on the silcd.[PID].stats temporary file.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:silc:secure_internet_live_conferencing:0.9.11:*:*:*:*:*:*:*
cpe:2.3:a:silc:secure_internet_live_conferencing:0.9.12:*:*:*:*:*:*:*
cpe:2.3:a:silc:secure_internet_live_conferencing:0.9.13:*:*:*:*:*:*:*
cpe:2.3:a:silc:secure_internet_live_conferencing:0.9.14:*:*:*:*:*:*:*
cpe:2.3:a:silc:secure_internet_live_conferencing:0.9.15:*:*:*:*:*:*:*
cpe:2.3:a:silc:secure_internet_live_conferencing:0.9.16:*:*:*:*:*:*:*
cpe:2.3:a:silc:secure_internet_live_conferencing:0.9.17:*:*:*:*:*:*:*
cpe:2.3:a:silc:secure_internet_live_conferencing:0.9.18:*:*:*:*:*:*:*
cpe:2.3:a:silc:secure_internet_live_conferencing:0.9.19:*:*:*:*:*:*:*
cpe:2.3:a:silc:secure_internet_live_conferencing:0.9.20:*:*:*:*:*:*:*
cpe:2.3:a:silc:secure_internet_live_conferencing:0.9.21:*:*:*:*:*:*:*
cpe:2.3:a:silc:secure_internet_live_conferencing:1.0:*:*:*:*:*:*:*

History

21 Nov 2024, 00:00

Type Values Removed Values Added
References () http://bugs.gentoo.org/show_bug.cgi?id=94587 - Patch () http://bugs.gentoo.org/show_bug.cgi?id=94587 - Patch
References () http://secunia.com/advisories/16659/ - () http://secunia.com/advisories/16659/ -
References () http://www.securityfocus.com/archive/1/409672 - () http://www.securityfocus.com/archive/1/409672 -
References () http://www.securityfocus.com/bid/14716 - () http://www.securityfocus.com/bid/14716 -
References () http://www.zataz.net/adviso/silc-server-toolkit-06152005.txt - () http://www.zataz.net/adviso/silc-server-toolkit-06152005.txt -

Information

Published : 2005-09-07 18:03

Updated : 2024-11-21 00:00


NVD link : CVE-2005-2809

Mitre link : CVE-2005-2809

CVE.ORG link : CVE-2005-2809


JSON object : View

Products Affected

silc

  • secure_internet_live_conferencing