What is the severity of CVE-2005-3349?

CVE-2005-3349 has a medium severity rating due to its potential for local users to perform unauthorized file operations.

How do I fix CVE-2005-3349?

To fix CVE-2005-3349, upgrade to GNU Gnump3d version 2.9.8 or later.

CVE-2005-3349 affects all versions of GNU Gnump3d prior to 2.9.8.

A symlink attack allows a local user to create a symbolic link to modify or delete files by exploiting the temporary index.lok file.

CVE-2005-3349 cannot be exploited remotely as it requires local user access to the affected system.

1.9

CWE

18/11/2005

7/8/2024

First published: Fri Nov 18 2005(Updated: )

GNU Gnump3d before 2.9.8 allows local users to modify or delete arbitrary files via a symlink attack on the index.lok temporary file.

Credit: security@debian.org

What is the severity of CVE-2005-3349?
CVE-2005-3349 has a medium severity rating due to its potential for local users to perform unauthorized file operations.
How do I fix CVE-2005-3349?
To fix CVE-2005-3349, upgrade to GNU Gnump3d version 2.9.8 or later.
What types of systems are affected by CVE-2005-3349?
CVE-2005-3349 affects all versions of GNU Gnump3d prior to 2.9.8.
What is a symlink attack in the context of CVE-2005-3349?
A symlink attack allows a local user to create a symbolic link to modify or delete files by exploiting the temporary index.lok file.
Can CVE-2005-3349 be exploited remotely?
CVE-2005-3349 cannot be exploited remotely as it requires local user access to the affected system.