CVE-2007-5936 Common Vulnerabilities and Exposures

Upstream information

CVE-2007-5936 at MITRE

Description

dvips in teTeX and TeXlive 2007 and earlier allows local users to obtain sensitive information and modify certain data by creating certain temporary files before they are processed by dviljk, which can then be read or modified in place.

SUSE information

Overall state of this security issue: Resolved

This issue is currently not rated by SUSE as it is not affecting the SUSE Enterprise products.

CVSS v2 Scores
	National Vulnerability Database
Base Score	3.6
Vector	AV:L/AC:L/Au:N/C:P/I:P/A:N
Access Vector	Local
Access Complexity	Low
Authentication	None
Confidentiality Impact	Partial
Integrity Impact	Partial
Availability Impact	None

SUSE Bugzilla entry: 340472 [RESOLVED / FIXED]

SUSE Security Advisories:

SUSE-SR:2008:001, published Wed, 09 Jan 2008 18:00:00 +0000
SUSE-SR:2008:011, published Fri, 09 May 2008 16:00:00 +0000

SUSE Timeline for this CVE

CVE page created: Tue Jul 9 16:34:49 2013
CVE page last modified: Mon Sep 30 17:10:45 2024