CVSS: 10.0EPSS: 0%CPEs: 11EXPL: 0CVE-2005-1851
https://notcve.org/view.php?id=CVE-2005-1851
A certain contributed script for ekg Gadu Gadu client 1.5 and earlier allows attackers to execute shell commands via unknown attack vectors. Ciertos scripts en el cliente ekg Gadu 1.5 y anteriores permiten ejecutar comandos shell mediante maneras de ataque desconocidas. • http://marc.info/?l=bugtraq&m=112198499417250&w=2 http://www.debian.org/security/2005/dsa-760 •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2005-1916
https://notcve.org/view.php?id=CVE-2005-1916
linki.py in ekg 2005-06-05 and earlier allows local users to overwrite or create arbitrary files via a symlink attack on temporary files. • http://marc.info/?l=bugtraq&m=112060146011122&w=2 http://marc.info/?l=bugtraq&m=112198499417250&w=2 http://www.debian.org/security/2005/dsa-760 http://www.zataz.net/adviso/ekg-06062005.txt • CWE-59: Improper Link Resolution Before File Access ('Link Following') •