ID CVE-2005-4803
Summary graphviz before 2.2.1 allows local users to overwrite arbitrary files via a symlink attack on temporary files. NOTE: this issue was originally associated with a different CVE identifier, CVE-2005-2965, which had been used for multiple different issues. This is the correct identifier.
References
Vulnerable Configurations
  • cpe:2.3:a:graphviz:graphviz:1.5.1
    cpe:2.3:a:graphviz:graphviz:1.5.1
  • cpe:2.3:a:graphviz:graphviz:1.5.2
    cpe:2.3:a:graphviz:graphviz:1.5.2
  • cpe:2.3:a:graphviz:graphviz:1.5.3
    cpe:2.3:a:graphviz:graphviz:1.5.3
  • cpe:2.3:a:graphviz:graphviz:1.7.5.1
    cpe:2.3:a:graphviz:graphviz:1.7.5.1
  • cpe:2.3:a:graphviz:graphviz:1.7.5.2
    cpe:2.3:a:graphviz:graphviz:1.7.5.2
  • cpe:2.3:a:graphviz:graphviz:1.7.5.3
    cpe:2.3:a:graphviz:graphviz:1.7.5.3
  • cpe:2.3:a:graphviz:graphviz:1.7.5.4
    cpe:2.3:a:graphviz:graphviz:1.7.5.4
  • cpe:2.3:a:graphviz:graphviz:1.7.5.5
    cpe:2.3:a:graphviz:graphviz:1.7.5.5
  • cpe:2.3:a:graphviz:graphviz:1.7.5.6
    cpe:2.3:a:graphviz:graphviz:1.7.5.6
  • cpe:2.3:a:graphviz:graphviz:1.7.5.7
    cpe:2.3:a:graphviz:graphviz:1.7.5.7
  • cpe:2.3:a:graphviz:graphviz:1.7.5_0.1
    cpe:2.3:a:graphviz:graphviz:1.7.5_0.1
  • cpe:2.3:a:graphviz:graphviz:1.7.5_0.2
    cpe:2.3:a:graphviz:graphviz:1.7.5_0.2
  • cpe:2.3:a:graphviz:graphviz:1.7.5_0.3
    cpe:2.3:a:graphviz:graphviz:1.7.5_0.3
  • cpe:2.3:a:graphviz:graphviz:1.7.16.1
    cpe:2.3:a:graphviz:graphviz:1.7.16.1
  • cpe:2.3:a:graphviz:graphviz:1.7.16.2
    cpe:2.3:a:graphviz:graphviz:1.7.16.2
  • cpe:2.3:a:graphviz:graphviz:1.8.5.1
    cpe:2.3:a:graphviz:graphviz:1.8.5.1
  • cpe:2.3:a:graphviz:graphviz:1.8.5.2
    cpe:2.3:a:graphviz:graphviz:1.8.5.2
  • cpe:2.3:a:graphviz:graphviz:1.8.9.1
    cpe:2.3:a:graphviz:graphviz:1.8.9.1
  • cpe:2.3:a:graphviz:graphviz:1.10_2003-09-15_0415_1
    cpe:2.3:a:graphviz:graphviz:1.10_2003-09-15_0415_1
  • cpe:2.3:a:graphviz:graphviz:1.10_2003-09-15_0415_2
    cpe:2.3:a:graphviz:graphviz:1.10_2003-09-15_0415_2
  • cpe:2.3:a:graphviz:graphviz:1.12.1
    cpe:2.3:a:graphviz:graphviz:1.12.1
  • cpe:2.3:a:graphviz:graphviz:1.12.2
    cpe:2.3:a:graphviz:graphviz:1.12.2
  • cpe:2.3:a:graphviz:graphviz:1.12.3
    cpe:2.3:a:graphviz:graphviz:1.12.3
  • cpe:2.3:a:graphviz:graphviz:1.14.1
    cpe:2.3:a:graphviz:graphviz:1.14.1
  • cpe:2.3:a:graphviz:graphviz:1.16.1
    cpe:2.3:a:graphviz:graphviz:1.16.1
  • cpe:2.3:a:graphviz:graphviz:2.2
    cpe:2.3:a:graphviz:graphviz:2.2
CVSS
Base: 3.6 (as of 19-05-2006 - 15:02)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE PARTIAL PARTIAL
nessus via4
  • NASL family Ubuntu Local Security Checks
    NASL id UBUNTU_USN-208-1.NASL
    description Javier Fernandez-Sanguino Pena discovered that the 'dotty' tool created and used temporary files in an insecure way. A local attacker could exploit this with a symlink attack to create or overwrite arbitrary files with the privileges of the user running dotty. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2018-08-15
    plugin id 20625
    published 2006-01-15
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=20625
    title Ubuntu 5.04 : graphviz vulnerability (USN-208-1)
  • NASL family Mandriva Local Security Checks
    NASL id MANDRAKE_MDKSA-2005-188.NASL
    description Javier Fernández-Sanguino Peña discovered insecure temporary file creation in graphviz, a rich set of graph drawing tools, that can be exploited to overwrite arbitrary files by a local attacker. The updated packages have been patched to address this issue.
    last seen 2019-02-21
    modified 2018-07-19
    plugin id 20433
    published 2006-01-15
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=20433
    title Mandrake Linux Security Advisory : graphviz (MDKSA-2005:188)
  • NASL family Debian Local Security Checks
    NASL id DEBIAN_DSA-857.NASL
    description Javier Fernandez-Sanguino Pena discovered insecure temporary file creation in graphviz, a rich set of graph drawing tools, that can be exploited to overwrite arbitrary files by a local attacker.
    last seen 2019-02-21
    modified 2018-07-20
    plugin id 19965
    published 2005-10-11
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=19965
    title Debian DSA-857-1 : graphviz - insecure temporary file
refmap via4
bid 15050
debian DSA-857
mandriva MDKSA-2005:188
secunia
  • 17121
  • 17125
  • 17207
ubuntu USN-208-1
Last major update 05-09-2008 - 16:57
Published 31-12-2005 - 00:00
Last modified 03-10-2018 - 17:34
Back to Top