CVE-2005-4772
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
31/12/2005
Last modified:
05/09/2008
Description
liby2util in Yet another Setup Tool (YaST) in SUSE Linux before 20051007 preserves permissions and ownerships when copying a remote repository, which might allow local users to read or modify sensitive files, possibly giving local users the ability to exploit CVE-2005-3013.
Impact
Base Score 2.0
6.40
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:suse:suse_linux_openexchange_server:4.0:*:*:*:*:*:*:* | ||
| cpe:2.3:a:suse:suse_linux_school_server:gold:*:*:*:*:*:*:* | ||
| cpe:2.3:a:suse:suse_linux_standard_server:8.0:*:*:*:*:*:*:* | ||
| cpe:2.3:a:suse:suse_sled_beagle:10.0:*:*:*:*:*:*:* | ||
| cpe:2.3:o:suse:suse_linux:1.0:*:desktop:*:*:*:*:* | ||
| cpe:2.3:o:suse:suse_linux:8:*:enterprise_server:*:*:*:*:* | ||
| cpe:2.3:o:suse:suse_linux:8.0:*:retail_solution:*:*:*:*:* | ||
| cpe:2.3:o:suse:suse_linux:8.2:*:personal:*:*:*:*:* | ||
| cpe:2.3:o:suse:suse_linux:8.2:*:professional:*:*:*:*:* | ||
| cpe:2.3:o:suse:suse_linux:9.0:*:*:*:*:*:*:* | ||
| cpe:2.3:o:suse:suse_linux:9.0:*:enterprise_server:*:*:*:*:* | ||
| cpe:2.3:o:suse:suse_linux:9.0:*:personal:*:*:*:*:* | ||
| cpe:2.3:o:suse:suse_linux:9.0:*:professional:*:*:*:*:* | ||
| cpe:2.3:o:suse:suse_linux:9.0:*:x86_64:*:*:*:*:* | ||
| cpe:2.3:o:suse:suse_linux:9.1:*:personal:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page