Vulnerabilities > CVE-2003-1139 - Unspecified vulnerability in Musicqueue 1.2
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN musicqueue
exploit available
Summary
Musicqueue 1.2.0 allows local users to overwrite arbitrary files by triggering a segmentation fault and using a symlink attack on the resulting musicqueue.crash file.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Musicqueue 1.2 SIGSEGV Signal Handler Insecure File Creation Vulnerability. CVE-2003-1139 . Local exploit for linux platform |
| id | EDB-ID:23297 |
| last seen | 2016-02-02 |
| modified | 2003-10-27 |
| published | 2003-10-27 |
| reporter | dong-h0un U |
| source | https://www.exploit-db.com/download/23297/ |
| title | Musicqueue 1.2 SIGSEGV Signal Handler Insecure File Creation Vulnerability |
References
- http://archives.neohapsis.com/archives/vulnwatch/2003-q4/0021.html
- http://archives.neohapsis.com/archives/vulnwatch/2003-q4/0021.html
- http://secunia.com/advisories/10104
- http://secunia.com/advisories/10104
- http://securitytracker.com/id?1008014
- http://securitytracker.com/id?1008014
- http://www.securityfocus.com/archive/1/342476
- http://www.securityfocus.com/archive/1/342476
- http://www.securityfocus.com/bid/8899
- http://www.securityfocus.com/bid/8899
- https://exchange.xforce.ibmcloud.com/vulnerabilities/13520
- https://exchange.xforce.ibmcloud.com/vulnerabilities/13520