{ "id": "CVE-2005-3546", "sourceIdentifier": "cve@mitre.org", "published": "2005-11-16T07:42:00.000", "lastModified": "2017-07-11T01:33:13.377", "vulnStatus": "Modified", "descriptions": [ { "lang": "en", "value": "suid.cgi scripts in F-Secure (1) Internet Gatekeeper for Linux before 2.15.484 and (2) Anti-Virus Linux Gateway before 2.16 are installed SUID with world-executable permissions, which allows local users to gain privilege." }, { "lang": "es", "value": "Los scritps suid.cgi en F-Secure (1) Internet Gatekeeper para Linux anteriores a 2.15.484 y (2) Anti-Virus Linux Gateway anteriores a 2.16 son instalados con SUID y con permiso de ejecuci\u00f3n para todo el mundo, lo que permite a usuarios locales ganar privilegios.\r\n" } ], "metrics": { "cvssMetricV2": [ { "source": "nvd@nist.gov", "type": "Primary", "cvssData": { "version": "2.0", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "accessVector": "LOCAL", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 7.2 }, "baseSeverity": "HIGH", "exploitabilityScore": 3.9, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": true, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false } ] }, "weaknesses": [ { "source": "nvd@nist.gov", "type": "Primary", "description": [ { "lang": "en", "value": "NVD-CWE-Other" } ] } ], "configurations": [ { "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:a:f-secure:f-secure_anti-virus:*:*:linux_gateways:*:*:*:*:*", "matchCriteriaId": "F83DDDED-51E8-43DE-BBA8-4AD36F920BF8" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f-secure:internet_gatekeeper:*:*:linux:*:*:*:*:*", "matchCriteriaId": "A4C973E1-597B-4D5C-B8AA-DCCEE4FC3480" } ] } ] } ], "references": [ { "url": "http://secunia.com/advisories/17467", "source": "cve@mitre.org", "tags": [ "Patch", "Vendor Advisory" ] }, { "url": "http://securitytracker.com/id?1015159", "source": "cve@mitre.org" }, { "url": "http://securitytracker.com/id?1015160", "source": "cve@mitre.org" }, { "url": "http://www.f-secure.com/security/fsc-2005-3.shtml", "source": "cve@mitre.org", "tags": [ "Patch", "Vendor Advisory" ] }, { "url": "http://www.osvdb.org/20513", "source": "cve@mitre.org" }, { "url": "http://www.osvdb.org/20537", "source": "cve@mitre.org" }, { "url": "http://www.osvdb.org/20538", "source": "cve@mitre.org" }, { "url": "http://www.osvdb.org/20539", "source": "cve@mitre.org" }, { "url": "http://www.osvdb.org/20540", "source": "cve@mitre.org" }, { "url": "http://www.osvdb.org/20541", "source": "cve@mitre.org" }, { "url": "http://www.osvdb.org/20542", "source": "cve@mitre.org" }, { "url": "http://www.osvdb.org/20543", "source": "cve@mitre.org" }, { "url": "http://www.osvdb.org/20544", "source": "cve@mitre.org" }, { "url": "http://www.osvdb.org/20545", "source": "cve@mitre.org" }, { "url": "http://www.osvdb.org/20546", "source": "cve@mitre.org" }, { "url": "http://www.osvdb.org/20547", "source": "cve@mitre.org" }, { "url": "http://www.osvdb.org/20548", "source": "cve@mitre.org" }, { "url": "http://www.osvdb.org/20549", "source": "cve@mitre.org" }, { "url": "http://www.osvdb.org/20550", "source": "cve@mitre.org" }, { "url": "http://www.osvdb.org/20551", "source": "cve@mitre.org" }, { "url": "http://www.osvdb.org/20552", "source": "cve@mitre.org" }, { "url": "http://www.securityfocus.com/bid/15339", "source": "cve@mitre.org" }, { "url": "http://www.vupen.com/english/advisories/2005/2331", "source": "cve@mitre.org" }, { "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/22966", "source": "cve@mitre.org" } ] }