CVE-2005-2693
EPSS 0.07%gcvs - insecure temporary files
Published: 8/26/2005Modified: 4/28/2026
Description
cvsbug in CVS 1.12.12 and earlier creates temporary files insecurely, which allows local users to overwrite arbitrary files and execute arbitrary code via a symlink attack.
Affected packages (3)
- Debian/cvsfrom 0, < 1:1.11.5-4
- Debian/cvsfrom 0, < 1.11.1p1debian-13
- Debian/gcvsfrom 0, < 1.0a7-2woody1