CVE-2005-2527

SUN Java < 1.4.2_release1 - Symlink Following

Title source: rule

Description

Race condition in Java 1.4.2 before 1.4.2 Release 2 on Apple Mac OS X allows local users to corrupt files or create arbitrary files via unspecified attack vectors related to a temporary directory, possibly due to a symlink attack.

References (7)

Scores

EPSS 0.0004
EPSS Percentile 12.3%

Classification

CWE
CWE-59
Status draft

Affected Products (1)

sun/java < 1.4.2_release1

Timeline

Published Dec 31, 2005
Tracked Since Feb 18, 2026