CVE-2005-2693

EPSS 0.07%

gcvs - insecure temporary files

發布日:2005/8/26修改日:2026/4/28

描述

cvsbug in CVS 1.12.12 and earlier creates temporary files insecurely, which allows local users to overwrite arbitrary files and execute arbitrary code via a symlink attack.

受影響套件(3)

Debian/cvsfrom 0, < 1:1.11.5-4
Debian/cvsfrom 0, < 1.11.1p1debian-13
Debian/gcvsfrom 0, < 1.0a7-2woody1

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2005-2693