CVE-2005-1064 in Filesystem Snapshot Utilityinfo

Summary

The copy_symlink function in rsnapshot 1.2.0 and 1.1.x before 1.1.7 changes the ownership of files that a symlink points to rather than the symlink itself, which allows local users to obtain access to arbitrary files.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

04/12/2005

Disclosure

04/10/2005

Moderation

VulDB entry created

Entries

VDB-24156 (1)

CPE

ready

CWE

CWE-61 (Confirmed)

CVSS

5.9

EPSS

0.00077

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2005-1064
NVD	https://nvd.nist.gov/vuln/detail/CVE-2005-1064
CVE Details	https://www.cvedetails.com/cve/CVE-2005-1064/

◂ Previous Overview Next ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!