CVE-2005-1853
published 2005-08-03CVE-2005-1853: gopher.c in the Gopher client 3.0.5 does not properly create temporary files, which allows local users to gain privileges.
PriorityP423high7.2CVSS 2.0
AVLACLAuNCCICAC
EPSS
0.52%
40.2th percentile
gopher.c in the Gopher client 3.0.5 does not properly create temporary files, which allows local users to gain privileges.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | gopher | < gopher 3.0.8 (bookworm) | gopher 3.0.8 (bookworm) |
| university_of_minnesota | gopher | — | — |
| university_of_minnesota | gopher | >= 0 < 3.0.8 | 3.0.8 |
| university_of_minnesota | gopher | >= 0 < 3.0.8 | 3.0.8 |
| university_of_minnesota | gopher | >= 0 < 3.0.8 | 3.0.8 |
| university_of_minnesota | gopher | >= 0 < 3.0.8 | 3.0.8 |
CVSS provenance
nvdv2.07.2HIGHAV:L/AC:L/Au:N/C:C/I:C/A:C
osv7.2HIGH
vendor_debian7.2LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-3823-wj6r-jpc9: gopher
ghsa_unreviewed·2022-05-01
CVE-2005-1853 [HIGH] GHSA-3823-wj6r-jpc9: gopher
gopher.c in the Gopher client 3.0.5 does not properly create temporary files, which allows local users to gain privileges.
OSV
CVE-2005-1853: gopher
osv·2005-08-03·CVSS 7.2
CVE-2005-1853 [HIGH] CVE-2005-1853: gopher
gopher.c in the Gopher client 3.0.5 does not properly create temporary files, which allows local users to gain privileges.
Debian
CVE-2005-1853: gopher - gopher.c in the Gopher client 3.0.5 does not properly create temporary files, wh...
vendor_debian·2005·CVSS 7.2
CVE-2005-1853 [HIGH] CVE-2005-1853: gopher - gopher.c in the Gopher client 3.0.5 does not properly create temporary files, wh...
gopher.c in the Gopher client 3.0.5 does not properly create temporary files, which allows local users to gain privileges.
Scope: local
bookworm: resolved (fixed in 3.0.8)
bullseye: resolved (fixed in 3.0.8)
forky: resolved (fixed in 3.0.8)
sid: resolved (fixed in 3.0.8)
trixie: resolved (fixed in 3.0.8)
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2005-08-03
Published