CVE-2003-0517
published 2003-08-18CVE-2003-0517: faxrunqd.in in mgetty 1.1.28 and earlier allows local users to overwrite files via a symlink attack on JOB files.
PriorityP49medium5.5CVSS 3.1
AVLACLPRLUINSUCNIHAN
EPSS
0.32%
24.0th percentile
faxrunqd.in in mgetty 1.1.28 and earlier allows local users to overwrite files via a symlink attack on JOB files.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | mgetty | < mgetty 1.1.29 (bookworm) | mgetty 1.1.29 (bookworm) |
| mgetty_project | mgetty | <= 1.1.28 | — |
| mgetty_project | mgetty | >= 0 < 1.1.29 | 1.1.29 |
| mgetty_project | mgetty | >= 0 < 1.1.29 | 1.1.29 |
| mgetty_project | mgetty | >= 0 < 1.1.29 | 1.1.29 |
| mgetty_project | mgetty | >= 0 < 1.1.29 | 1.1.29 |
CVSS provenance
nvdv3.15.5MEDIUMCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
nvdv2.02.1LOWAV:L/AC:L/Au:N/C:N/I:P/A:N
osv5.5MEDIUM
vendor_debian5.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Debian
CVE-2003-0517: mgetty - faxrunqd.in in mgetty 1.1.28 and earlier allows local users to overwrite files v...
vendor_debian·2003·CVSS 5.5
CVE-2003-0517 [MEDIUM] CVE-2003-0517: mgetty - faxrunqd.in in mgetty 1.1.28 and earlier allows local users to overwrite files v...
faxrunqd.in in mgetty 1.1.28 and earlier allows local users to overwrite files via a symlink attack on JOB files.
Scope: local
bookworm: resolved (fixed in 1.1.29)
bullseye: resolved (fixed in 1.1.29)
forky: resolved (fixed in 1.1.29)
sid: resolved (fixed in 1.1.29)
trixie: resolved (fixed in 1.1.29)
GHSA
GHSA-mf4g-hr4q-jc65: faxrunqd
ghsa_unreviewed·2022-05-03
CVE-2003-0517 [LOW] GHSA-mf4g-hr4q-jc65: faxrunqd
faxrunqd.in in mgetty 1.1.28 and earlier allows local users to overwrite files via a symlink attack on JOB files.
OSV
CVE-2003-0517: faxrunqd
osv·2003-08-18·CVSS 5.5
CVE-2003-0517 [MEDIUM] CVE-2003-0517: faxrunqd
faxrunqd.in in mgetty 1.1.28 and earlier allows local users to overwrite files via a symlink attack on JOB files.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
CWE
Improper Link Resolution Before File Access ('Link Following')
mitre_cwe
CWE-59 Improper Link Resolution Before File Access ('Link Following')
CWE-59: Improper Link Resolution Before File Access ('Link Following')
The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.
Background: Soft links are a UNIX term that is synonymous with simple shortcuts on Windows-based platforms.
Modes of Introduction:
Phase: Implementation
Note: REALIZATION: This weakness is caused during implementation of an architectural security tactic.
Common Consequences:
Scope: Confidentiality, Integrity, Access Control. Impact: Read Files or Directories, Modify Files or Directories, Bypass Protection Mechanism. An attacker may be able to traverse the file system to unintended locations and read or overwrite the contents of unexpe
CWE
UNIX Symbolic Link (Symlink) Following
mitre_cwe
CWE-61 UNIX Symbolic Link (Symlink) Following
CWE-61: UNIX Symbolic Link (Symlink) Following
The product, when opening a file or directory, does not sufficiently account for when the file is a symbolic link that resolves to a target outside of the intended control sphere. This could allow an attacker to cause the product to operate on unauthorized files.
A product that allows UNIX symbolic links (symlink) as part of paths whether in internal code or through user input can allow an attacker to spoof the symbolic link and traverse the file system to unintended locations or access arbitrary files. The symbolic link can permit an attacker to read/write/corrupt a file that they originally did not have permissions to access.
Modes of Introduction:
Phase: Implementation
Note: These are typically reported for temporary files or privileged
2003-08-18
Published