CVE-2005-1396

medium

Description

Race condition in Ce/Ceterm (aka ARPUS/Ce) 2.5.4 and earlier allows local users to write to arbitrary files via a symlink attack on the ce_edit_log temporary file.

References

http://www.osvdb.org/16050

http://www.digitalmunition.com/DMA%5B2005-0501a%5D.txt

http://secunia.com/advisories/15197

Details

Source: Mitre, NVD

Published: 2005-05-03

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 1.2

Vector: CVSS2#AV:L/AC:H/Au:N/C:N/I:P/A:N

Severity: Low

CVSS v3

Base Score: 4.7

Vector: CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N

Severity: Medium

EPSS

EPSS: 0.00171