CVE-2005-2960SUSE CVEsecurity@suse.deSUSE Security TeamSUSE CVE-2005-2960Interim112024-07-18T02:30:24Zcurrent2024-07-18T02:30:24Z2024-07-18T02:30:24Zcve-database/bin/generate-cvrf-cve.pl2020-12-27T01:00:00ZCVE-2005-2960cfengine 1.6.5 and 2.1.16 allows local users to overwrite arbitrary files via a symlink attack on temporary files used by vicf.in, a different vulnerability than CVE-2005-3137.The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/JEB4MGA7ZHLZN7LAGGSGT2FVNZ76HOWH/#JEB4MGA7ZHLZN7LAGGSGT2FVNZ76HOWHE-Mail link for SUSE-SR:2005:023https://www.suse.com/support/security/rating/SUSE Security Ratingscfengine 1.6.5 and 2.1.16 allows local users to overwrite arbitrary files via a symlink attack on temporary files used by vicf.in, a different vulnerability than CVE-2005-3137.CVE-2005-2960moderate2.1AV:L/AC:L/Au:N/C:N/I:P/A:N