CVE-2003-0924Netpbm-free vulnerability

6 documents6 sources
Severity
3.7LOWNVD
EPSS
0.1%
top 72.55%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Debian Netpbm-freeNetpbm
Timeline
PublishedFeb 17
Latest updateMay 3

Description

netpbm 9.25 and earlier does not properly create temporary files, which allows local users to overwrite arbitrary files.

CVSS vector

AV:L/AC:H/C:P/I:P/A:PExploitability: 1.9 | Impact: 6.4

Affected Packages2 packages

debiandebian/netpbm-free< netpbm-free 2:9.25-9 (bookworm)
NVDnetpbm/netpbm9.25

Patches

Patch: www.debian.orgPatch: www.redhat.comPatch: www.debian.org

🔴Vulnerability Details

2
GHSA
GHSA-4rcx-3v3w-9cg9: netpbm 92022-05-03
OSV
CVE-2003-0924: netpbm 92004-02-17

📋Vendor Advisories

2
Red Hat
security flaw2004-01-18
Debian
CVE-2003-0924: netpbm-free - netpbm 9.25 and earlier does not properly create temporary files, which allows l...2003

💬Community

1
Bugzilla
CVE-2003-0924 security flaw2018-08-16