NVD脆弱性詳細

CVE-2005-3254

概要	The CGIwrap program before 3.9 on Debian GNU/Linux uses an incorrect minimum value of 100 for a UID to determine whether it can perform a seteuid operation, which could allow attackers to execute code as other system UIDs that are greater than the minimum value, which should be 1000 on Debian systems.
公表日	2005年10月19日6:02
登録日	2021年1月29日17:59
最終更新日	2008年9月6日5:53

CVSS2.0 : HIGH
スコア	10.0
ベクター	AV:N/AC:L/Au:N/C:C/I:C/A:C
攻撃元区分(AV)	ネットワーク
攻撃条件の複雑さ(AC)	低
攻撃前の認証要否(Au)	不要
機密性への影響(C)	高
完全性への影響(I)	高
可用性への影響(A)	高
全ての特権を取得	はい
ユーザー権限を取得	いいえ
その他の権限を取得	いいえ
ユーザー操作が必要	いいえ

影響を受けるソフトウェアの構成

構成1	以上	以下	より上	未満
cpe:2.3:a:nathan_neulinger:cgiwrap:1.0::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:2.0::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:2.1::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:2.2::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:2.3::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:2.4::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:2.5::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:2.6::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:2.7::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.0::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.1::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.2::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.3::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.4::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.5::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.6::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.6.1::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.6.2::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.6.3::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.6.4::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.6.5::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.7::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.7.1::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.8::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.11::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.21::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.22::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.23::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.24::debian_gnu_linux:::::

構成1	以上	以下	より上	未満
cpe:2.3:a:nathan_neulinger:cgiwrap:1.0::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:2.0::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:2.1::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:2.2::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:2.3::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:2.4::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:2.5::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:2.6::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:2.7::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.0::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.1::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.2::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.3::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.4::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.5::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.6::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.6.1::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.6.2::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.6.3::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.6.4::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.6.5::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.7::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.7.1::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.8::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.11::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.21::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.22::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.23::debian_gnu_linux:::::
cpe:2.3:a:nathan_neulinger:cgiwrap:3.24::debian_gnu_linux:::::