CVE-2005-2475

EPSS 0.08%

unzip - race condition

發布日:2005/8/5修改日:2026/4/28

也稱為:DEBIAN-CVE-2005-2475

描述

Race condition in Unzip 5.52 allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by Unzip after the decompression is complete.

受影響套件(2)

Debian/unzipfrom 0, < 5.52-4
Debian/unzipfrom 0, < 5.50-1woody5

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2005-2475