Race condition vulnerability in Unzip 5.52 allows local users to modify file permissions via a hard link attack during decompression

CVE-2005-2475 · LOW Severity

AV:L/AC:H/AU:N/C:P/I:N/A:N

Race condition in Unzip 5.52 allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by Unzip after the decompression is complete.

Learn more about our User Device Pen Test.