Unrated severityNVD Advisory· Published Oct 4, 2004· Updated Apr 16, 2026

CVE-2004-1349

Description

gzip before 1.3 in Solaris 8, when called with the -f or -force flags, will change the permissions of files that are hard linked to the target files, which allows local users to view or modify these files.

Affected products

GNU/Gzip
cpe:2.3:a:gnu:gzip:*:*:*:*:*:*:*:*
Range: <1.3
Oracle Corporation/Solaris
cpe:2.3:o:oracle:solaris:8:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/12744nvdNot ApplicablePatchVendor Advisory
sunsolve.sun.com/search/document.donvdBroken LinkPatchVendor Advisory
www.securityfocus.com/bid/11318nvdBroken LinkPatchThird Party AdvisoryVDB EntryVendor Advisory
www.kb.cert.org/vuls/id/635998nvdThird Party AdvisoryUS Government Resource
exchange.xforce.ibmcloud.com/vulnerabilities/17577nvdThird Party AdvisoryVDB Entry
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1654nvdNot Applicable

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000