VYPR
Get started
← All advisories
Unrated severityNVD Advisory· Published Jan 10, 2005· Updated Apr 16, 2026

CVE-2004-0996

CVE-2004-0996

Description

main.c in cscope 15-4 and 15-5 creates temporary files with predictable filenames, which allows local users to overwrite arbitrary files via a symlink attack.

Affected products

21
  • Cscope/Cscope5 versions
    cpe:2.3:a:cscope:cscope:13.0:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:cscope:cscope:13.0:*:*:*:*:*:*:*
    • cpe:2.3:a:cscope:cscope:15.1:*:*:*:*:*:*:*
    • cpe:2.3:a:cscope:cscope:15.3:*:*:*:*:*:*:*
    • cpe:2.3:a:cscope:cscope:15.4:*:*:*:*:*:*:*
    • cpe:2.3:a:cscope:cscope:15.5:*:*:*:*:*:*:*
  • Debian/Debian Linux12 versions
    cpe:2.3:o:debian:debian_linux:3.0:*:*:*:*:*:*:*+ 11 more
    • cpe:2.3:o:debian:debian_linux:3.0:*:*:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:alpha:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:arm:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:hppa:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:ia-32:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:ia-64:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:m68k:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:mips:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:mipsel:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:ppc:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:s-390:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:sparc:*:*:*:*:*
  • Gentoo/Linux
    cpe:2.3:o:gentoo:linux:*:*:*:*:*:*:*:*
  • SCO Group/Unixware3 versions
    cpe:2.3:o:sco:unixware:7.1.1:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:o:sco:unixware:7.1.1:*:*:*:*:*:*:*
    • cpe:2.3:o:sco:unixware:7.1.3:*:*:*:*:*:*:*
    • cpe:2.3:o:sco:unixware:7.1.4:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

13

News mentions

0

No linked articles in our index yet.