CVE-2005-3321

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2005-3321
chkstat in SuSE Linux 9.0 through 10.0 allows local users to modify permissions of files by creating a hardlink to a file from a world-writable directory, which can cause the link count to drop to 1 when the file is deleted or replaced, which is then modified by chkstat to use weaker permissions.

4.6 /10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:L/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 3.9 / Impact : 6.4

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References
Link Resource
http://secunia.com/advisories/17290/
http://www.novell.com/linux/security/advisories/2005_62_permissions.html
http://www.osvdb.org/20263
http://www.securityfocus.com/bid/15182
https://exchange.xforce.ibmcloud.com/vulnerabilities/22853
http://secunia.com/advisories/17290/
http://www.novell.com/linux/security/advisories/2005_62_permissions.html
http://www.osvdb.org/20263
http://www.securityfocus.com/bid/15182
https://exchange.xforce.ibmcloud.com/vulnerabilities/22853
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:novell:suse_linux:10.0:*:*:*:*:*:*:*
cpe:2.3:o:suse:suse_linux:9.0:*:*:*:*:*:*:*
cpe:2.3:o:suse:suse_linux:9.0:*:x86_64:*:*:*:*:*
cpe:2.3:o:suse:suse_linux:9.1:*:*:*:*:*:*:*
cpe:2.3:o:suse:suse_linux:9.1:*:x86_64:*:*:*:*:*
cpe:2.3:o:suse:suse_linux:9.2:*:*:*:*:*:*:*
cpe:2.3:o:suse:suse_linux:9.2:*:x86_64:*:*:*:*:*
cpe:2.3:o:suse:suse_linux:9.3:*:*:*:*:*:*:*
cpe:2.3:o:suse:suse_linux:9.3:*:x86_64:*:*:*:*:*
History

21 Nov 2024, 00:01

Type Values Removed Values Added
References () http://secunia.com/advisories/17290/ - () http://secunia.com/advisories/17290/ -
References () http://www.novell.com/linux/security/advisories/2005_62_permissions.html - () http://www.novell.com/linux/security/advisories/2005_62_permissions.html -
References () http://www.osvdb.org/20263 - () http://www.osvdb.org/20263 -
References () http://www.securityfocus.com/bid/15182 - () http://www.securityfocus.com/bid/15182 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/22853 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/22853 -
Information

Published : 2005-10-27 10:02

Updated : 2024-11-21 00:01

NVD link : CVE-2005-3321

Mitre link : CVE-2005-3321

CVE.ORG link : CVE-2005-3321

JSON object : View

Products Affected

novell

  • suse_linux

suse

  • suse_linux
CWE
NVD-CWE-Other