CVE-2004-0975

CVE	CVE-2004-0975
State	PUBLISHED
Assigner	mitre
Source Priority	CVE Program / NVD first with legacy fallback
Published	2005-02-09 05:00:00 UTC
Updated	2025-04-03 01:03:51 UTC
Description	The der_chop script in the openssl package in Trustix Secure Linux 1.5 through 2.1 and other operating systems allows local users to overwrite files via a symlink attack on temporary files.

Primary CVSS: v2.0 2.1 from [email protected]

AV:L/AC:L/Au:N/C:N/I:P/A:N

Problem Types: NVD-CWE-Other | n/a

Access Vector

Local

Access Complexity

Low

Authentication

None

Confidentiality

None

Integrity

Partial

Availability

None

AV:L/AC:L/Au:N/C:N/I:P/A:N

Type	Vendor	Product	Version	Update	Edition	Language
Operating System	Gentoo	Linux	All	All	All	All
Operating System	Mandrakesoft	Mandrake Linux	10.0	All	All	All
Operating System	Mandrakesoft	Mandrake Linux	10.0	All	amd64	All
Operating System	Mandrakesoft	Mandrake Linux	10.1	All	All	All
Operating System	Mandrakesoft	Mandrake Linux	10.1	All	x86_64	All
Operating System	Mandrakesoft	Mandrake Linux	9.2	All	All	All
Operating System	Mandrakesoft	Mandrake Linux	9.2	All	amd64	All
Operating System	Mandrakesoft	Mandrake Linux Corporate Server	2.1	All	All	All
Operating System	Mandrakesoft	Mandrake Linux Corporate Server	2.1	All	x86_64	All
Application	Mandrakesoft	Mandrake Multi Network Firewall	8.2	All	All	All
Application	Openssl	Openssl	0.9.6	All	All	All
Application	Openssl	Openssl	0.9.6a	All	All	All
Application	Openssl	Openssl	0.9.6b	All	All	All
Application	Openssl	Openssl	0.9.6c	All	All	All
Application	Openssl	Openssl	0.9.6d	All	All	All
Application	Openssl	Openssl	0.9.6e	All	All	All
Application	Openssl	Openssl	0.9.6f	All	All	All
Application	Openssl	Openssl	0.9.6g	All	All	All
Application	Openssl	Openssl	0.9.6h	All	All	All
Application	Openssl	Openssl	0.9.6i	All	All	All
Application	Openssl	Openssl	0.9.6j	All	All	All
Application	Openssl	Openssl	0.9.6k	All	All	All
Application	Openssl	Openssl	0.9.6l	All	All	All
Application	Openssl	Openssl	0.9.6m	All	All	All
Application	Openssl	Openssl	0.9.7c	All	All	All
Application	Openssl	Openssl	0.9.7d	All	All	All

Source	Vendor	Product	Version	Platforms
CNA	Na	N/a	affected n/a	Not specified

Reference	Source	Link	Tags
rhn.redhat.com \| Red Hat Support	af854a3a-2127-422b-91ae-364da2661108	www.redhat.com
IBM X-Force Exchange	af854a3a-2127-422b-91ae-364da2661108	exchange.xforce.ibmcloud.com
136302 – CAN-2004-0975 temporary file vulnerabilities in der_chop script	af854a3a-2127-422b-91ae-364da2661108	bugzilla.redhat.com
www.trustix.org/errata/2004/0050	af854a3a-2127-422b-91ae-364da2661108	www.trustix.org
Gentoo Linux Documentation -- OpenSSL, Groff: Insecure tempfile handling	af854a3a-2127-422b-91ae-364da2661108	www.gentoo.org
Repository / Oval Repository	af854a3a-2127-422b-91ae-364da2661108	oval.cisecurity.org
Repository / Oval Repository	af854a3a-2127-422b-91ae-364da2661108	oval.cisecurity.org
OpenSSL DER_CHOP Insecure Temporary File Creation Vulnerability	af854a3a-2127-422b-91ae-364da2661108	www.securityfocus.com	Patch, Vendor Advisory
Secunia - Advisories - OpenSSL "der_chop" Script Insecure Temporary File Creation	af854a3a-2127-422b-91ae-364da2661108	secunia.com
Debian -- Security Information -- DSA-603-1 openssl	af854a3a-2127-422b-91ae-364da2661108	www.debian.org
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

Organization	Published	Contributor	Statement
Red Hat	2007-03-14	Mark J Cox	Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.

There are currently no legacy QID mappings associated with this CVE.