Vulnerabilities > CVE-2005-2809 - Unspecified vulnerability in Silc Secure Internet Live Conferencing

CVSS 2.1 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

local

low complexity

silc

NVD

Published: 2005-09-07

Updated: 2008-09-05

Summary

silc daemon (silcd.c) in Secure Internet Live Conferencing (SILC) 1.0 and earlier allows local users to overwrite arbitrary files via a symlink attack on the silcd.[PID].stats temporary file.

Vulnerable Configurations

Part	Description	Count
Application	Silc Silc Secure Internet Live Conferencing 0.9.11 Silc Secure Internet Live Conferencing 0.9.12 Silc Secure Internet Live Conferencing 0.9.13 Silc Secure Internet Live Conferencing 0.9.14 Silc Secure Internet Live Conferencing 0.9.15 Silc Secure Internet Live Conferencing 0.9.16 Silc Secure Internet Live Conferencing 0.9.17 Silc Secure Internet Live Conferencing 0.9.18 Silc Secure Internet Live Conferencing 0.9.19 Silc Secure Internet Live Conferencing 0.9.20 Silc Secure Internet Live Conferencing 0.9.21 Silc Secure Internet Live Conferencing 1.0	12

Summary

Vulnerable Configurations

References