Penetration Testing UK

CVE-2005-3011

CVE-2005-3011

Severity Score

1.2

Access Vector

LOCAL

Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

Summary

The sort_offline function for texindex in texinfo 4.8 and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files.

Learn more about our Penetration Testing services.