Low

CVE-2004-0256 - Unspecified vulnerability in GNU Libtool

Publication: 2004-11-23
Summary

GNU libtool before 1.5.2, during compile time, allows local users to overwrite arbitrary files via a symlink attack on libtool directories in /tmp.

Risk level (CVSS 2.1)

Low

2.1

Access Vector

  • Network
  • Adjacent Network
  • Local

Access Complexity

  • Low
  • Medium
  • High

Authentication

  • None
  • Single
  • Multiple

Confident. Impact

  • Complete
  • Partial
  • None

Integrity Impact

  • Complete
  • Partial
  • None

Affected Products

  • GNU Libtool 1.0
  • GNU Libtool 1.1
  • GNU Libtool 1.2
  • GNU Libtool 1.3
  • GNU Libtool 1.3.2
  • GNU Libtool 1.3.3
  • GNU Libtool 1.3.4
  • GNU Libtool 1.3.5
  • GNU Libtool 1.4
  • GNU Libtool 1.4.1
  • GNU Libtool 1.4.2
  • GNU Libtool 1.4.3
  • GNU Libtool 1.5