Vulnerability Details CVE-2005-3885
The ps2epsi extension shell script (ps2epsi.sh) in Inkscape before 0.41 allows local users to overwrite arbitrary files via a symlink attack on the tmpepsifile.epsi temporary file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 24.5%
CVSS Severity
CVSS v2 Score 2.1
References
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=321501
- http://secunia.com/advisories/16343
- http://secunia.com/advisories/17882
- http://secunia.com/advisories/17886
- http://www.debian.org/security/2005/dsa-916
- http://www.securityfocus.com/bid/14522
- https://usn.ubuntu.com/223-1/
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=321501
- http://secunia.com/advisories/16343
- http://secunia.com/advisories/17882
- http://secunia.com/advisories/17886
- http://www.debian.org/security/2005/dsa-916
- http://www.securityfocus.com/bid/14522
- https://usn.ubuntu.com/223-1/