CVE-2005-2660

NameCVE-2005-2660
Descriptionapachetop 0.12.5 and earlier, when running in debug mode, allows local users to create or append to arbitrary files via a symlink attack on atop.debug.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SuSE, Mageia, GitHub code/issues, web search, more)
ReferencesDSA-839-1
NVD severitylow (attack range: local)

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
apachetop (PTS)wheezy, jessie0.12.6-16fixed
buster, sid, stretch0.12.6-18fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
apachetopsource(unstable)0.12.5-3low
apachetopsourcesarge0.12.5-1sarge1lowDSA-839-1

Search for package or bug name: Reporting problems