Vulnerability Name: | CVE-2004-1110 (CCN-18011) | ||||||||
Assigned: | 2004-11-09 | ||||||||
Published: | 2004-11-09 | ||||||||
Updated: | 2017-07-11 | ||||||||
Summary: | The mtink status monitor before 1.0.5 for Epson printers allows local users to overwrite arbitrary files via a symlink attack on the epson temporary file. | ||||||||
CVSS v3 Severity: | 4.0 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L)
| ||||||||
CVSS v2 Severity: | 2.1 Low (CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:P/A:N)
| ||||||||
Vulnerability Type: | CWE-Other | ||||||||
Vulnerability Consequences: | File Manipulation | ||||||||
References: | Source: CONFIRM Type: UNKNOWN http://bugs.gentoo.org/show_bug.cgi?id=70310 Source: MITRE Type: CNA CVE-2004-1110 Source: CCN Type: GLSA-200411-17 mtink: Insecure tempfile handling Source: GENTOO Type: Patch, Vendor Advisory GLSA-200411-17 Source: CCN Type: OSVDB ID: 11585 mtink Status Monitor Insecure Temporary File Creation Source: BID Type: Patch, Vendor Advisory 11640 Source: CCN Type: BID-11640 MTink Insecure Temporary File Creation Vulnerability Source: XF Type: UNKNOWN mtink-tmp-file-symlink(18011) Source: XF Type: UNKNOWN mtink-tmp-file-symlink(18011) | ||||||||
Vulnerable Configuration: | Configuration 1: Configuration 2: Configuration CCN 1: ![]() | ||||||||
BACK |