1. CVE-Search
  2. CVE-2005-3546
ID CVE-2005-3546
Summary suid.cgi scripts in F-Secure (1) Internet Gatekeeper for Linux before 2.15.484 and (2) Anti-Virus Linux Gateway before 2.16 are installed SUID with world-executable permissions, which allows local users to gain privilege.
References
Vulnerable Configurations
  • cpe:2.3:a:f-secure:f-secure_anti-virus:*:*:linux_gateways:*:*:*:*:*
    cpe:2.3:a:f-secure:f-secure_anti-virus:*:*:linux_gateways:*:*:*:*:*
  • cpe:2.3:a:f-secure:internet_gatekeeper:*:*:linux:*:*:*:*:*
    cpe:2.3:a:f-secure:internet_gatekeeper:*:*:linux:*:*:*:*:*
CVSS
Base: 7.2 (as of 11-07-2017 - 01:33)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:L/AC:L/Au:N/C:C/I:C/A:C
refmap via4
bid 15339
confirm http://www.f-secure.com/security/fsc-2005-3.shtml
osvdb
  • 20513
  • 20537
  • 20538
  • 20539
  • 20540
  • 20541
  • 20542
  • 20543
  • 20544
  • 20545
  • 20546
  • 20547
  • 20548
  • 20549
  • 20550
  • 20551
  • 20552
sectrack
  • 1015159
  • 1015160
secunia 17467
vupen ADV-2005-2331
xf fsecure-scripts-root-privileges(22966)
Last major update 11-07-2017 - 01:33
Published 16-11-2005 - 07:42
Last modified 11-07-2017 - 01:33
Back to Top