CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2005-0503

uim before 0.4.5.1 trusts certain environment variables when libUIM is used in setuid or setgid applications, which allows local users to gain privileges.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 21.6%

CVSS Severity

CVSS v2 Score 4.6

References

http://lists.freedesktop.org/archives/uim/2005-February/000996.html
http://secunia.com/advisories/13981
http://www.mandriva.com/security/advisories?name=MDKSA-2005:046
http://www.securityfocus.com/bid/12604
http://lists.freedesktop.org/archives/uim/2005-February/000996.html
http://secunia.com/advisories/13981
http://www.mandriva.com/security/advisories?name=MDKSA-2005:046
http://www.securityfocus.com/bid/12604

Products affected by CVE-2005-0503

Uim » Uim » Version: 0.4.5

cpe:2.3:a:uim:uim:0.4.5
Mandrakesoft » Mandrake Linux » Version: 10.1

cpe:2.3:o:mandrakesoft:mandrake_linux:10.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-0503

Products

Pricing

Contact Us