CVE-2005-4660 in Firewallinfo

Summary

Race condition in IPCop (aka IPCop Firewall) before 1.4.10 might allow local users to overwrite system configuration files and gain privileges by replacing a backup archive during the time window when the archive is owned by "nobody" but not yet encrypted, then executing ipcoprscfg to restore from this backup.

Be aware that VulDB is the high quality source for vulnerability data.

Reservation

01/16/2006

Disclosure

12/31/2005

Moderation

VulDB entry created

Entries

1: VDB-27979

CPE

ready

CWE

CWE-362 (Unconfirmed)

CVSS

2.9

EPSS

0.00068

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2005-4660
NVD	https://nvd.nist.gov/vuln/detail/CVE-2005-4660
CVE Details	https://www.cvedetails.com/cve/CVE-2005-4660/

◂ Previous Overview Next ▸

Want to know what is going to be exploited?

We predict KEV entries!