Vulnerability Details CVE-2005-3321
chkstat in SuSE Linux 9.0 through 10.0 allows local users to modify permissions of files by creating a hardlink to a file from a world-writable directory, which can cause the link count to drop to 1 when the file is deleted or replaced, which is then modified by chkstat to use weaker permissions.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 7.4%
CVSS Severity
CVSS v2 Score 4.6
References
- http://secunia.com/advisories/17290/
- http://www.novell.com/linux/security/advisories/2005_62_permissions.html
- http://www.osvdb.org/20263
- http://www.securityfocus.com/bid/15182
- https://exchange.xforce.ibmcloud.com/vulnerabilities/22853
- http://secunia.com/advisories/17290/
- http://www.novell.com/linux/security/advisories/2005_62_permissions.html
- http://www.osvdb.org/20263
- http://www.securityfocus.com/bid/15182
- https://exchange.xforce.ibmcloud.com/vulnerabilities/22853
Products affected by CVE-2005-3321
-
cpe:2.3:o:novell:suse_linux:10.0
-
cpe:2.3:o:suse:suse_linux:9.0
-
cpe:2.3:o:suse:suse_linux:9.1
-
cpe:2.3:o:suse:suse_linux:9.2
-
cpe:2.3:o:suse:suse_linux:9.3