Home > Vulnerability Database > CVE-2004-0969

Mend.io Vulnerability Database

New vulnerability? Tell us about it!

CVE-2004-0969

Date: October 19, 2004

The groffer script in the Groff package 1.18 and later versions, as used in Trustix Secure Linux 1.5 through 2.1, and possibly other operating systems, allows local users to overwrite files via a symlink attack on temporary files.

Severity Score

4.0

Related Resources (10)

Url: http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=136313

Url: https://nvd.nist.gov/vuln/detail/CVE-2004-0969

Url: http://www.gentoo.org/security/en/glsa/glsa-200411-15.xml

Url: http://www.securityfocus.com/bid/11287

Url: http://www.trustix.org/errata/2004/0050

Url: https://exchange.xforce.ibmcloud.com/vulnerabilities/17583

Url: http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2006:038

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2004-0969

Url: http://secunia.com/advisories/18764

Url: https://www.mend.io/vulnerability-database/CVE-2004-0969

Severity Score

4.0

CVSS v3.1

Base Score:	4.0
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	NONE
Integrity (I):	LOW
Availability (A):	NONE

CVSS v2

Base Score:	2.1
Access Vector (AV):	LOCAL
Access Complexity (AC):	LOW
Authentication (AU):	NONE
Confidentiality (C):	NONE
Integrity (I):	PARTIAL
Availability (A):	NONE
Additional information:

Do you need more information?

Contact Us