PT-2003-1693 · Linuxtag+1 · Knoppix+1

Hugo Vázquez Caramés

Published

2003-07-10

Updated

2016-10-18

CVE-2003-0524

CVSS v2.0

6.2

Medium

Vector

AV:L/AC:H/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions: Qt in Knoppix version 3.1

Description: The issue allows local users to overwrite arbitrary files via a symlink attack on the qt plugins 3.0rc temporary file in the .qt directory.

Recommendations: For Qt in Knoppix version 3.1, consider restricting write access to the .qt directory to prevent arbitrary file overwrites until a patch is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2003-0524

Affected Products

Knoppix

PT-2003-1693 · Linuxtag+1 · Knoppix+1

CVE-2003-0524

Related Identifiers

Affected Products

References · 2