Silc: >> Secure Internet Live Conferencing >> 0.9.12 Security Vulnerabilities
silc daemon (silcd.c) in Secure Internet Live Conferencing (SILC) 1.0 and earlier allows local users to overwrite arbitrary files via a symlink attack on the silcd.[PID].stats temporary file.
CVSS Score
2.1
EPSS Score
0.001
Published
2005-09-07
Secure Internet Live Conferencing (SILC) 0.9.11 and 0.9.12 stores passwords and sessions in plaintext in memory, which could allow local users to obtain sensitive information.
CVSS Score
4.3
EPSS Score
0.003
Published
2003-12-31