CVE-2004-0581

ksymoops-gznm script in Mandrake Linux 9.1 through 10.0, and Corporate Server 2.1, allows local users to delete arbitrary files via a symlink attack on files in /tmp.

Published: Aug 6, 2004
Updated: Apr 13, 2023
CVE: CVE-2004-0581
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4.6
AV:L/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
gnu / ksymoops	2.4.5	2.4.5.x
gnu / ksymoops	2.4.8	2.4.8.x
gnu / ksymoops	2.4.9	2.4.9.x
mandrakesoft / mandrake_linux_corporate_server	2.1	2.1.x
mandrakesoft / mandrake_linux	9.2	9.2.x
mandrakesoft / mandrake_linux	9.1	9.1.x
mandrakesoft / mandrake_linux	10.0	10.0.x

http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:060
http://www.securityfocus.com/bid/10516
https://exchange.xforce.ibmcloud.com/vulnerabilities/16392

Vulnerability Database

289,599

CVE-2004-0581