Vulnerabilities > CVE-2004-2605 - Local Insecure Temporary File Creation vulnerability in Astats 1.6.5

047910
CVSS 2.1 - LOW
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE
local
low complexity
astats

Summary

aStats 1.6.5 allows local users to overwrite arbitrary files via a symlink attack on (1) the aStats-Graphic-Signature-Generation file and (2) certain PNG image files.

Vulnerable Configurations

Part Description Count
Application
Astats
1