Unrated severityNVD Advisory· Published May 2, 2005· Updated Jun 16, 2026

CVE-2005-0070

Description

Synaesthesia 2.1 and earlier, and possibly other versions, when installed setuid root, does not drop privileges before processing configuration and mixer files, which allows local users to read arbitrary files.

Affected products

Synaesthesia/Synaesthesia2 versions
cpe:2.3:a:synaesthesia:synaesthesia:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:synaesthesia:synaesthesia:*:*:*:*:*:*:*:*range: <=2.1
- (no CPE)range: <=2.1

Patches

Vulnerability mechanics

References

www.debian.org/security/2005/dsa-681nvdPatchVendor Advisory
secunia.com/advisories/14300nvd
securitytracker.com/idnvd
www.securityfocus.com/bid/12546nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000