NVD
- Id
- 66361
- Name
- CVE-2005-0610
- Description
- Multiple symlink vulnerabilities in portupgrade before 20041226_2 in FreeBSD allow local users to (1) overwrite arbitrary files and possibly replace packages to execute arbitrary code via pkg_fetch, (2) overwrite arbitrary files via temporary files when portupgrade upgrades a port or package, or (3) create arbitrary zero-byte files via the pkgdb.fixme temporary file.
- Reject
- CVSS Version
- 2
- CVSS Score
- 7.2
- Severity
- High
- CVSS Base Score
- 7.2
- CVSS Impact Subscore
- 10
- CVSS Exploit Subscore
- 3.9
- CVSS Vector
- (AV:L/AC:L/Au:N/C:C/I:C/A:C)
- Pub Date
- 2017-01-03
- Published
- 2005-04-12
- Modified Date
- 2008-09-05
- Seq
- 2005-0610
