CVE-2006-0055

The ispell_op function in ee on FreeBSD 4.10 to 6.0 uses predictable filenames and does not confirm which file is being written, which allows local users to overwrite arbitrary files via a symlink attack when ee invokes ispell.

Published: Jan 11, 2006
Updated: Apr 13, 2023
CVE: CVE-2006-0055
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 2.1
AV:L/AC:L/Au:N/C:N/I:P/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
freebsd / freebsd	5.4-releng	5.4-releng.x
freebsd / freebsd	5.3-release	5.3-release.x
freebsd / freebsd	5.1-releng	5.1-releng.x
freebsd / freebsd	5.3	5.3.x
freebsd / freebsd	5.1-release_p5	5.1-release_p5.x
freebsd / freebsd	5.2.1-releng	5.2.1-releng.x
freebsd / freebsd	5.0-release_p14	5.0-release_p14.x
freebsd / freebsd	5.1-release	5.1-release.x
freebsd / freebsd	5.0-releng	5.0-releng.x
freebsd / freebsd	5.1-alpha	5.1-alpha.x
freebsd / freebsd	4.10-releng	4.10-releng.x
freebsd / freebsd	4.11-releng	4.11-releng.x
freebsd / freebsd	4.10-release	4.10-release.x
freebsd / freebsd	5.1	5.1.x
freebsd / freebsd	5.2	5.2.x
freebsd / freebsd	4.11-release_p3	4.11-release_p3.x
freebsd / freebsd	4.10-release_p8	4.10-release_p8.x
freebsd / freebsd	5.4-pre-release	5.4-pre-release.x
freebsd / freebsd	6.0-release	6.0-release.x
freebsd / freebsd	4.10	4.10.x
freebsd / freebsd	5.4-release	5.4-release.x
freebsd / freebsd	5.0-alpha	5.0-alpha.x
freebsd / freebsd	5.2.1-release	5.2.1-release.x
freebsd / freebsd	5.0	5.0.x
freebsd / freebsd	6.0-stable	6.0-stable.x
freebsd / freebsd	5.3-stable	5.3-stable.x
freebsd / freebsd	5.3-releng	5.3-releng.x
freebsd / freebsd	4.11-stable	4.11-stable.x

Vulnerability Database

290,476

CVE-2006-0055