CVE-2005-3011 - Improper Link Resolution Before File Access ('Link Following')

Severity

12%

Complexity

19%

Confidentiality

48%

The sort_offline function for texindex in texinfo 4.8 and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files.

The sort_offline function for texindex in texinfo 4.8 and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files.

CVSS 2.0 Base Score 1.2. CVSS Attack Vector: local. CVSS Attack Complexity: high. CVSS Vector: (AV:L/AC:H/Au:N/C:N/I:P/A:N).

Overview

First reported 19 years ago

2005-09-21 20:03:00

Last updated 6 years ago

2018-10-19 15:34:00

Affected Software

GNU texinfo

References

FreeBSD-SA-06:01

20061101-01-P

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=328365

Exploit

http://docs.info.apple.com/article.html?artnum=305530

APPLE-SA-2007-05-24

TSLSA-2005-0059

16816

Vendor Advisory

17070

Vendor Advisory

17076

Vendor Advisory

17093

Vendor Advisory

17211

Vendor Advisory

17215

Vendor Advisory

18401

Vendor Advisory

22929

Vendor Advisory

23112

Vendor Advisory

24788

Vendor Advisory

25402

Vendor Advisory

1014992

1015468

DSA-1219

GLSA-200510-04

MDKSA-2005:175

SUSE-SR:2005:023

RHSA-2006:0727

20070404 VMSA-2007-0003 VMware ESX 3.0.1 and 3.0.0 server security updates

14854

USN-194-1

http://www.vmware.com/support/vi3/doc/esx-1121906-patch.html

http://www.vmware.com/support/vi3/doc/esx-2559638-patch.html

ADV-2007-1267

Vendor Advisory

ADV-2007-1939

Vendor Advisory

oval:org.mitre.oval:def:10589

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.