Vulnerability Details CVE-2003-0539
skk (Simple Kana to Kanji conversion program) 12.1 and earlier, and the ddskk package which is based on skk, creates temporary files insecurely, which allows local users to overwrite arbitrary files.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 20.8%
CVSS Severity
CVSS v2 Score 4.6
References
- http://www.debian.org/security/2003/dsa-343
- http://www.redhat.com/support/errata/RHSA-2003-242.html
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A28
- http://www.debian.org/security/2003/dsa-343
- http://www.redhat.com/support/errata/RHSA-2003-242.html
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A28
Products affected by CVE-2003-0539
-
cpe:2.3:a:ddskk:ddskk:11.6_.rel.0
-
cpe:2.3:a:redhat:daredevil_skk:11.3.2
-
cpe:2.3:a:redhat:daredevil_skk:11.3.5
-
cpe:2.3:a:redhat:daredevil_skk:11.6.0-10
-
cpe:2.3:a:redhat:daredevil_skk:11.6.0-6
-
cpe:2.3:a:redhat:daredevil_skk:11.6.0-8
-
cpe:2.3:a:redhat:ddskk-xemacs:11.6.0-10
-
cpe:2.3:a:redhat:ddskk-xemacs:11.6.0-6
-
cpe:2.3:a:redhat:ddskk-xemacs:11.6.0-8
-
cpe:2.3:a:skk:skk:10.62a