cbcvebase.
CVE-2004-0975
published 2005-02-09

CVE-2004-0975: The der_chop script in the openssl package in Trustix Secure Linux 1.5 through 2.1 and other operating systems allows local users to overwrite files via a…

PriorityP46low2.1CVSS 2.0
AVLACLAuNCNIPAN
EPSS
0.41%
33.4th percentile
The der_chop script in the openssl package in Trustix Secure Linux 1.5 through 2.1 and other operating systems allows local users to overwrite files via a symlink attack on temporary files.

Affected

26 ranges· showing 25
VendorProductVersion rangeFixed in
debianopenssl< openssl 0.9.7e-3 (bookworm)openssl 0.9.7e-3 (bookworm)
mandrakesoftmandrake_linux
mandrakesoftmandrake_linux
mandrakesoftmandrake_linux
mandrakesoftmandrake_linux_corporate_server
mandrakesoftmandrake_multi_network_firewall
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl>= 0 < 0.9.7e-30.9.7e-3
opensslopenssl>= 0 < 0.9.7e-30.9.7e-3
opensslopenssl>= 0 < 0.9.7e-30.9.7e-3

CVSS provenance

nvdv2.02.1LOWAV:L/AC:L/Au:N/C:N/I:P/A:N
osv2.1LOW
vendor_debian2.1LOW
vendor_redhat2.1LOW
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.