PT-2005-5564 · Debian · Vdr

Javier Fernandez-Sanguino Pena

Published

1970-01-01

Updated

2017-07-11

CVE-2005-0071

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions vdr versions prior to 1.2.6

Description The issue concerns multiple vulnerabilities in the vdr package of the Debian GNU/Linux operating system, which can lead to a breach of protected information integrity. These vulnerabilities can be exploited remotely. The problem is related to the insecure creation of files, allowing attackers to overwrite arbitrary files.

Recommendations For versions prior to 1.2.6, update to version 1.2.6 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive files and directories to minimize the risk of exploitation. Avoid using the vulnerable package until the issue is resolved.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

BDU:2015-01953

BDU:2015-01954

BDU:2015-01955

BDU:2015-01956

BDU:2015-01957

CVE-2005-0071

DSA-656-1

Affected Products

Vdr

PT-2005-5564 · Debian · Vdr

CVE-2005-0071

Related Identifiers

Affected Products

References · 18