Vulnerabilities > CVE-2005-2944 - Local Security vulnerability in Brent ELY Gnome Workstation Command Center 0.9.8

CVSS 4.6 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

local

low complexity

brent-ely

NVD

Published: 2005-09-16

Updated: 2008-09-05

Summary

The perform_file_save function in GNOME Workstation Command Center (gwcc) 0.9.6 and earlier allows local users to create and overwrite arbitrary files via a symlink attack on the gwcc_out.txt temporary file.

Vulnerable Configurations

Part	Description	Count
Application	Brent_Ely Brent ELY Gnome Workstation Command Center * Brent ELY Gnome Workstation Command Center 0.9.8	2

References

http://bugs.gentoo.org/show_bug.cgi?id=104566
http://secunia.com/advisories/16833
http://www.zataz.net/adviso/gwcc-09052005.txt