Description
gen-index in GNATS 4.0, 4.1.0, and possibly earlier versions, when installed setuid, does not properly check files passed to the -o argument and opens the file with write access, which allows local users to overwrite arbitrary files.
References (3)
Core 3
Core References
Mailing List mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=112066901231154&w=2
Various Sources x_refsource_misc
http://www.pi3.int.pl/adv/gnats.txt
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/15963
Scores
EPSS
0.0007
EPSS Percentile
20.9%
Details
Status
published
Products (2)
gnu/gnats
4.0
gnu/gnats
4.1.0
Published
Jul 11, 2005
Tracked Since
Feb 18, 2026