← Voltar para CVEs
CVE-2005-4803
N/ADescricao
graphviz before 2.2.1 allows local users to overwrite arbitrary files via a symlink attack on temporary files. NOTE: this issue was originally associated with a different CVE identifier, CVE-2005-2965, which had been used for multiple different issues. This is the correct identifier.
Detalhes CVE
Pontuacao CVSS v3.1N/A
Publicado12/31/2005
Ultima modificacao4/16/2026
Fontenvd
Avistamentos honeypot0
Produtos afetados
graphviz:graphviz
Referencias
http://secunia.com/advisories/17121(cve@mitre.org)
http://secunia.com/advisories/17125(cve@mitre.org)
http://secunia.com/advisories/17207(cve@mitre.org)
http://www.debian.org/security/2005/dsa-857(cve@mitre.org)
http://www.securityfocus.com/bid/15050(cve@mitre.org)
https://usn.ubuntu.com/208-1/(cve@mitre.org)
http://secunia.com/advisories/17121(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/17125(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/17207(af854a3a-2127-422b-91ae-364da2661108)
http://www.debian.org/security/2005/dsa-857(af854a3a-2127-422b-91ae-364da2661108)
http://www.mandriva.com/security/advisories?name=MDKSA-2005:188(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/15050(af854a3a-2127-422b-91ae-364da2661108)
https://usn.ubuntu.com/208-1/(af854a3a-2127-422b-91ae-364da2661108)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.