CVE-2005-0990

7 documents7 sources
Severity
2.1LOW
EPSS
0.1%
top 71.77%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
GNU Sharutils
Timeline
PublishedMay 2
Latest updateMay 1

Description

unshar (unshar.c) in sharutils 4.2.1 allows local users to overwrite arbitrary files via a symlink attack on the unsh.X temporary file.

CVSS vector

AV:L/AC:L/C:N/I:P/A:NExploitability: 3.9 | Impact: 2.9

Affected Packages2 packages

Debiansharutils< 1:4.2.1-13+3
NVDgnu/sharutils4.2.1

Patches

Patch: www.redhat.comPatch: www.redhat.com

🔴Vulnerability Details

3
GHSA
GHSA-358m-xcjh-x4vp: unshar (unshar2022-05-01
OSV
CVE-2005-0990: unshar (unshar2005-05-02
CVEList
CVE-2005-0990: unshar (unshar2005-04-06

📋Vendor Advisories

2
Red Hat
security flaw2005-03-31
Debian
CVE-2005-0990: sharutils - unshar (unshar.c) in sharutils 4.2.1 allows local users to overwrite arbitrary f...2005

💬Community

1
Bugzilla
CVE-2005-0990 security flaw2018-08-16