CVE-2009-5081
Severity Score
3.3
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The (1) config.guess, (2) contrib/groffer/perl/groffer.pl, and (3) contrib/groffer/perl/roff2.pl scripts in GNU troff (aka groff) 1.21 and earlier use an insufficient number of X characters in the template argument to the tempfile function, which makes it easier for local users to overwrite arbitrary files via a symlink attack on a temporary file, a different vulnerability than CVE-2004-0969.
Los scripts (1) config.guess ,(2) contrib / groffer / perl / groffer.pl, y (3) contrib/groffer/perl/roff2.pl en GNU troff (también conocido como groff) v1.21 y anteriores, utilizan un número insuficiente de X caracteres en el argumento plantilla (template) en la función tempfile, lo que hace más fácil para los usuarios locales sobreescribir ficheros arbitrarios mediante un ataque de enlaces simbólicos en un archivo temporal, una vulnerabilidad diferente a CVE-2004-0969.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2011-06-30 CVE Reserved
- 2011-06-30 CVE Published
- 2023-03-08 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-59: Improper Link Resolution Before File Access ('Link Following')
CAPEC
References (5)
| URL | Tag | Source |
|---|---|---|
| http://cvsweb.openwall.com/cgi/cvsweb.cgi/Owl/packages/groff/groff-1.20.1-owl-tmp.diff.diff?r1=1.1%3Br2=1.2%3Bf=h | X_refsource_confirm |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://cvsweb.openwall.com/cgi/cvsweb.cgi/Owl/packages/groff/groff-1.20.1-owl-tmp.diff | 2023-11-07 | |
| http://openwall.com/lists/oss-security/2009/08/14/4 | 2023-11-07 | |
| http://openwall.com/lists/oss-security/2009/08/14/5 | 2023-11-07 |
| URL | Date | SRC |
|---|---|---|
| http://www.mandriva.com/security/advisories?name=MDVSA-2013:086 | 2023-11-07 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Gnu Search vendor "Gnu" | Groff Search vendor "Gnu" for product "Groff" | <= 1.21 Search vendor "Gnu" for product "Groff" and version " <= 1.21" | - |
Affected
| ||||||
| Gnu Search vendor "Gnu" | Groff Search vendor "Gnu" for product "Groff" | 1.10 Search vendor "Gnu" for product "Groff" and version "1.10" | - |
Affected
| ||||||
| Gnu Search vendor "Gnu" | Groff Search vendor "Gnu" for product "Groff" | 1.11 Search vendor "Gnu" for product "Groff" and version "1.11" | - |
Affected
| ||||||
| Gnu Search vendor "Gnu" | Groff Search vendor "Gnu" for product "Groff" | 1.11a Search vendor "Gnu" for product "Groff" and version "1.11a" | - |
Affected
| ||||||
| Gnu Search vendor "Gnu" | Groff Search vendor "Gnu" for product "Groff" | 1.14 Search vendor "Gnu" for product "Groff" and version "1.14" | - |
Affected
| ||||||
| Gnu Search vendor "Gnu" | Groff Search vendor "Gnu" for product "Groff" | 1.15 Search vendor "Gnu" for product "Groff" and version "1.15" | - |
Affected
| ||||||
| Gnu Search vendor "Gnu" | Groff Search vendor "Gnu" for product "Groff" | 1.16 Search vendor "Gnu" for product "Groff" and version "1.16" | - |
Affected
| ||||||
| Gnu Search vendor "Gnu" | Groff Search vendor "Gnu" for product "Groff" | 1.16.1 Search vendor "Gnu" for product "Groff" and version "1.16.1" | - |
Affected
| ||||||
| Gnu Search vendor "Gnu" | Groff Search vendor "Gnu" for product "Groff" | 1.17.1 Search vendor "Gnu" for product "Groff" and version "1.17.1" | - |
Affected
| ||||||
| Gnu Search vendor "Gnu" | Groff Search vendor "Gnu" for product "Groff" | 1.17.2 Search vendor "Gnu" for product "Groff" and version "1.17.2" | - |
Affected
| ||||||
| Gnu Search vendor "Gnu" | Groff Search vendor "Gnu" for product "Groff" | 1.18.1 Search vendor "Gnu" for product "Groff" and version "1.18.1" | - |
Affected
| ||||||
| Gnu Search vendor "Gnu" | Groff Search vendor "Gnu" for product "Groff" | 1.19 Search vendor "Gnu" for product "Groff" and version "1.19" | - |
Affected
| ||||||
| Gnu Search vendor "Gnu" | Groff Search vendor "Gnu" for product "Groff" | 1.19.1 Search vendor "Gnu" for product "Groff" and version "1.19.1" | - |
Affected
| ||||||
| Gnu Search vendor "Gnu" | Groff Search vendor "Gnu" for product "Groff" | 1.19.2 Search vendor "Gnu" for product "Groff" and version "1.19.2" | - |
Affected
| ||||||
| Gnu Search vendor "Gnu" | Groff Search vendor "Gnu" for product "Groff" | 1.20 Search vendor "Gnu" for product "Groff" and version "1.20" | - |
Affected
| ||||||
| Gnu Search vendor "Gnu" | Groff Search vendor "Gnu" for product "Groff" | 1.20.1 Search vendor "Gnu" for product "Groff" and version "1.20.1" | - |
Affected
| ||||||