Search for vulnerabilities
Vulnerability details: VCID-c8bd-ftfc-aaad
Vulnerability ID VCID-c8bd-ftfc-aaad
Aliases CVE-2004-0976
Summary Multiple scripts in the perl package in Trustix Secure Linux 1.5 through 2.1 and other operating systems allows local users to overwrite files via a symlink attack on temporary files.
Status Published
Exploitability 0.5
Weighted Severity 6.2
Risk 3.1
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
rhas Moderate https://access.redhat.com/errata/RHSA-2005:881
epss 0.00042 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00042 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00042 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00042 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00042 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00042 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00042 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00042 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00042 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00042 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00042 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00042 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00042 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00042 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00042 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
epss 0.00109 https://api.first.org/data/v1/epss?cve=CVE-2004-0976
rhbs low https://bugzilla.redhat.com/show_bug.cgi?id=1617339
cvssv2 2.1 https://nvd.nist.gov/vuln/detail/CVE-2004-0976
Reference id Reference type URL
http://fedoranews.org/updates/FEDORA--.shtml
http://marc.info/?l=bugtraq&m=110547693019788&w=2
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0976.json
https://api.first.org/data/v1/epss?cve=CVE-2004-0976
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0976
http://secunia.com/advisories/17661
http://secunia.com/advisories/18075
https://exchange.xforce.ibmcloud.com/vulnerabilities/17583
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9752
http://www.debian.org/security/2004/dsa-620
http://www.mandriva.com/security/advisories?name=MDKSA-2005:031
http://www.redhat.com/support/errata/RHSA-2005-881.html
http://www.securityfocus.com/bid/11294
http://www.trustix.org/errata/2004/0050
1617339 https://bugzilla.redhat.com/show_bug.cgi?id=1617339
cpe:2.3:a:larry_wall:perl:5.6:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:larry_wall:perl:5.6:*:*:*:*:*:*:*
cpe:2.3:a:larry_wall:perl:5.6.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:larry_wall:perl:5.6.1:*:*:*:*:*:*:*
cpe:2.3:a:larry_wall:perl:5.8.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:larry_wall:perl:5.8.0:*:*:*:*:*:*:*
cpe:2.3:a:larry_wall:perl:5.8.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:larry_wall:perl:5.8.1:*:*:*:*:*:*:*
cpe:2.3:a:larry_wall:perl:5.8.3:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:larry_wall:perl:5.8.3:*:*:*:*:*:*:*
CVE-2004-0976 https://nvd.nist.gov/vuln/detail/CVE-2004-0976
RHSA-2005:881 https://access.redhat.com/errata/RHSA-2005:881
USN-16-1 https://usn.ubuntu.com/16-1/
No exploits are available.
Vector: AV:L/AC:L/Au:N/C:N/I:P/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2004-0976
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Exploit Prediction Scoring System (EPSS)
Percentile 0.05128
EPSS Score 0.00042
Published At Nov. 1, 2024, midnight
Date Actor Action Source VulnerableCode Version
There are no relevant records.