| Vulnerability Name: | CVE-2004-0770 (CCN-16884) |
| Assigned: | 2004-08-04 |
| Published: | 2004-08-04 |
| Updated: | 2017-07-11 |
| Summary: | romload.c in DGen Emulator 1.23 and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files during decompression of (1) gzip or (2) bzip ROM files.
|
| CVSS v3 Severity: | 4.0 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L)| Exploitability Metrics: | Attack Vector (AV): Local
Attack Complexity (AC): High
Privileges Required (PR): None
User Interaction (UI): None | | Scope: | Scope (S): Unchanged
| | Impact Metrics: | Confidentiality (C): None
Integrity (I): Low
Availibility (A): Low |
|
| CVSS v2 Severity: | 2.1 Low (CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:P/A:N)| Exploitability Metrics: | Access Vector (AV): Local
Access Complexity (AC): Low
Authentication (Au): None | | Impact Metrics: | Confidentiality (C): None
Integrity (I): Partial
Availibility (A): None |
2.6 Low (CCN CVSS v2 Vector: AV:L/AC:H/Au:N/C:N/I:P/A:P)| Exploitability Metrics: | Access Vector (AV): Local
Access Complexity (AC): High
Athentication (Au): None
| | Impact Metrics: | Confidentiality (C): None
Integrity (I): Partial
Availibility (A): Partial |
|
| Vulnerability Type: | CWE-Other
|
| Vulnerability Consequences: | File Manipulation |
| References: | Source: CONFIRM
Type: UNKNOWN
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=263282&archive=yes
Source: MITRE
Type: CNA
CVE-2004-0770
Source: CCN
Type: SA12214
DGen Insecure Temporary File Creation Vulnerability
Source: SECUNIA
Type: UNKNOWN
12214
Source: CCN
Type: OSVDB ID: 8300
DGen Symlink Arbitrary File Creation
Source: BID
Type: Vendor Advisory
10855
Source: CCN
Type: BID-10855
DGen Emulator Symbolic Link Vulnerability
Source: XF
Type: UNKNOWN
dgen-rom-decompression-symlink(16884)
Source: XF
Type: UNKNOWN
dgen-rom-decompression-symlink(16884)
|
| Vulnerable Configuration: | Configuration 1:
cpe:/a:dgen:emulator:1.15:*:*:*:*:*:*:*OR cpe:/a:dgen:emulator:1.16:*:*:*:*:*:*:*OR cpe:/a:dgen:emulator:1.17:*:*:*:*:*:*:*OR cpe:/a:dgen:emulator:1.18:*:*:*:*:*:*:*OR cpe:/a:dgen:emulator:1.20:*:*:*:*:*:*:*OR cpe:/a:dgen:emulator:1.20_a:*:*:*:*:*:*:*OR cpe:/a:dgen:emulator:1.21:*:*:*:*:*:*:*OR cpe:/a:dgen:emulator:1.22:*:*:*:*:*:*:*OR cpe:/a:dgen:emulator:1.23:*:*:*:*:*:*:*
Configuration 2:
cpe:/o:debian:debian_linux:3.0:*:*:*:*:*:*:*OR cpe:/o:debian:debian_linux:3.0:*:alpha:*:*:*:*:*OR cpe:/o:debian:debian_linux:3.0:*:arm:*:*:*:*:*OR cpe:/o:debian:debian_linux:3.0:*:hppa:*:*:*:*:*OR cpe:/o:debian:debian_linux:3.0:*:ia-32:*:*:*:*:*OR cpe:/o:debian:debian_linux:3.0:*:ia-64:*:*:*:*:*OR cpe:/o:debian:debian_linux:3.0:*:m68k:*:*:*:*:*OR cpe:/o:debian:debian_linux:3.0:*:mips:*:*:*:*:*OR cpe:/o:debian:debian_linux:3.0:*:mipsel:*:*:*:*:*OR cpe:/o:debian:debian_linux:3.0:*:ppc:*:*:*:*:*OR cpe:/o:debian:debian_linux:3.0:*:s-390:*:*:*:*:*OR cpe:/o:debian:debian_linux:3.0:*:sparc:*:*:*:*:*
 Denotes that component is vulnerable |
| BACK |