Vulnerability Description
Novell NetMail 3.5.2a, 3.5.2b, and 3.5.2c, when running on Linux, sets the owner and group ID to 500 for certain files, which could allow users or groups with that ID to execute arbitrary code or cause a denial of service by modifying those files.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Novell | Netmail | 3.5.2 |
References
- http://secunia.com/advisories/15763PatchVendor Advisory
- http://securitytracker.com/id?1014251
- http://support.novell.com/cgi-bin/search/searchtid.cgi?/10098022.htmPatch
- http://www.osvdb.org/17456Patch
- http://www.securityfocus.com/bid/14005Patch
- http://secunia.com/advisories/15763PatchVendor Advisory
- http://securitytracker.com/id?1014251
- http://support.novell.com/cgi-bin/search/searchtid.cgi?/10098022.htmPatch
- http://www.osvdb.org/17456Patch
- http://www.securityfocus.com/bid/14005Patch
FAQ
What is CVE-2005-1976?
CVE-2005-1976 is a vulnerability with a CVSS score of 1.7 (LOW). Novell NetMail 3.5.2a, 3.5.2b, and 3.5.2c, when running on Linux, sets the owner and group ID to 500 for certain files, which could allow users or groups with that ID to execute arbitrary code or caus...
How severe is CVE-2005-1976?
CVE-2005-1976 has been rated LOW with a CVSS base score of 1.7/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-1976?
Check the references section above for vendor advisories and patch information. Affected products include: Novell Netmail.