cbcvebase.
CVE-2004-0974
published 2005-02-09

CVE-2004-0974: The netatalk package in Trustix Secure Linux 1.5 through 2.1, and possibly other operating systems, allows local users to overwrite files via a symlink attack…

PriorityP45low2.1CVSS 2.0
AVLACLAuNCNIPAN
EPSS
0.39%
31.2th percentile
The netatalk package in Trustix Secure Linux 1.5 through 2.1, and possibly other operating systems, allows local users to overwrite files via a symlink attack on temporary files.

Affected

13 ranges
VendorProductVersion rangeFixed in
debiannetatalk< netatalk 1.6.4a-1 (bullseye)netatalk 1.6.4a-1 (bullseye)
mandrakesoftmandrake_linux
mandrakesoftmandrake_linux
mandrakesoftmandrake_linux
mandrakesoftmandrake_linux_corporate_server
netatalknetatalk>= 0 < 1.6.4a-11.6.4a-1
netatalknetatalk>= 0 < 1.6.4a-11.6.4a-1
netatalknetatalk>= 0 < 1.6.4a-11.6.4a-1
netatalkopen_source_apple_file_share_protocol_suite
netatalkopen_source_apple_file_share_protocol_suite
netatalkopen_source_apple_file_share_protocol_suite
redhatfedora_core
redhatfedora_core

CVSS provenance

nvdv2.02.1LOWAV:L/AC:L/Au:N/C:N/I:P/A:N
osv2.1LOW
vendor_debian2.1LOW
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.