CVE-2004-0372
published 2004-04-15CVE-2004-0372: xine allows local users to overwrite arbitrary files via a symlink attack on a bug report email that is generated by the (1) xine-bugreport or (2) xine-check…
PriorityP49low2.1CVSS 2.0
AVLACLAuNCNIPAN
EPSS
0.34%
26.1th percentile
xine allows local users to overwrite arbitrary files via a symlink attack on a bug report email that is generated by the (1) xine-bugreport or (2) xine-check scripts.
Affected
20 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | xine-ui | < xine-ui 0.99.1-1 (bookworm) | xine-ui 0.99.1-1 (bookworm) |
| xine | xine | — | — |
| xine | xine | — | — |
| xine | xine | — | — |
| xine | xine | — | — |
| xine | xine | — | — |
| xine | xine | — | — |
| xine | xine | — | — |
| xine | xine | — | — |
| xine | xine | — | — |
| xine | xine | — | — |
| xine | xine | — | — |
| xine | xine | — | — |
| xine | xine | — | — |
| xine | xine | — | — |
| xine | xine | — | — |
| xine | xine | — | — |
| xine | xine | — | — |
| xine | xine | — | — |
| xine | xine | — | — |
CVSS provenance
nvdv2.02.1LOWAV:L/AC:L/Au:N/C:N/I:P/A:N
osv2.1LOW
vendor_debian2.1LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-gcqg-g524-q8fj: xine allows local users to overwrite arbitrary files via a symlink attack on a bug report email that is generated by the (1) xine-bugreport or (2) xin
ghsa_unreviewed·2022-04-29
CVE-2004-0372 [LOW] GHSA-gcqg-g524-q8fj: xine allows local users to overwrite arbitrary files via a symlink attack on a bug report email that is generated by the (1) xine-bugreport or (2) xin
xine allows local users to overwrite arbitrary files via a symlink attack on a bug report email that is generated by the (1) xine-bugreport or (2) xine-check scripts.
OSV
CVE-2004-0372: xine allows local users to overwrite arbitrary files via a symlink attack on a bug report email that is generated by the (1) xine-bugreport or (2) xin
osv·2004-04-15·CVSS 2.1
CVE-2004-0372 [LOW] CVE-2004-0372: xine allows local users to overwrite arbitrary files via a symlink attack on a bug report email that is generated by the (1) xine-bugreport or (2) xin
xine allows local users to overwrite arbitrary files via a symlink attack on a bug report email that is generated by the (1) xine-bugreport or (2) xine-check scripts.
Debian
CVE-2004-0372: xine-ui - xine allows local users to overwrite arbitrary files via a symlink attack on a b...
vendor_debian·2004·CVSS 2.1
CVE-2004-0372 [LOW] CVE-2004-0372: xine-ui - xine allows local users to overwrite arbitrary files via a symlink attack on a b...
xine allows local users to overwrite arbitrary files via a symlink attack on a bug report email that is generated by the (1) xine-bugreport or (2) xine-check scripts.
Scope: local
bookworm: resolved (fixed in 0.99.1-1)
bullseye: resolved (fixed in 0.99.1-1)
forky: resolved (fixed in 0.99.1-1)
sid: resolved (fixed in 0.99.1-1)
trixie: resolved (fixed in 0.99.1-1)
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://marc.info/?l=bugtraq&m=107997911025558&w=2http://security.gentoo.org/glsa/glsa-200404-20.xmlhttp://www.debian.org/security/2004/dsa-477http://www.securityfocus.com/bid/9939https://exchange.xforce.ibmcloud.com/vulnerabilities/15564http://marc.info/?l=bugtraq&m=107997911025558&w=2http://security.gentoo.org/glsa/glsa-200404-20.xmlhttp://www.debian.org/security/2004/dsa-477http://www.securityfocus.com/bid/9939https://exchange.xforce.ibmcloud.com/vulnerabilities/15564
2004-04-15
Published