Multiple symlink vulnerabilities in portupgrade before 20041226_2 in FreeBSD allow local users to (1) overwrite arbitrary files and possibly replace packages to execute arbitrary code via pkg_fetch, (2) overwrite arbitrary files via temporary files when portupgrade upgrades a port or package, or (3) create arbitrary zero-byte files via the pkgdb.fixme temporary file.
2005-04-12T04:00:00.000
2025-04-03T01:03:51.193
Deferred
CVSSv2: 7.2 (HIGH)
AV:L/AC:L/Au:N/C:C/I:C/A:C
3.9
10.0
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | freebsd | freebsd | 4.0 | Yes |
| Operating System | freebsd | freebsd | 4.0 | Yes |
| Operating System | freebsd | freebsd | 4.0 | Yes |
| Operating System | freebsd | freebsd | 4.1 | Yes |
| Operating System | freebsd | freebsd | 4.1.1 | Yes |
| Operating System | freebsd | freebsd | 4.1.1 | Yes |
| Operating System | freebsd | freebsd | 4.1.1 | Yes |
| Operating System | freebsd | freebsd | 4.2 | Yes |
| Operating System | freebsd | freebsd | 4.2 | Yes |
| Operating System | freebsd | freebsd | 4.3 | Yes |
| Operating System | freebsd | freebsd | 4.3 | Yes |
| Operating System | freebsd | freebsd | 4.3 | Yes |
| Operating System | freebsd | freebsd | 4.3 | Yes |
| Operating System | freebsd | freebsd | 4.3 | Yes |
| Operating System | freebsd | freebsd | 4.4 | Yes |
| Operating System | freebsd | freebsd | 4.4 | Yes |
| Operating System | freebsd | freebsd | 4.4 | Yes |
| Operating System | freebsd | freebsd | 4.4 | Yes |
| Operating System | freebsd | freebsd | 4.5 | Yes |
| Operating System | freebsd | freebsd | 4.5 | Yes |
| Operating System | freebsd | freebsd | 4.5 | Yes |
| Operating System | freebsd | freebsd | 4.5 | Yes |
| Operating System | freebsd | freebsd | 4.5 | Yes |
| Operating System | freebsd | freebsd | 4.6 | Yes |
| Operating System | freebsd | freebsd | 4.6 | Yes |
| Operating System | freebsd | freebsd | 4.6 | Yes |
| Operating System | freebsd | freebsd | 4.6 | Yes |
| Operating System | freebsd | freebsd | 4.6 | Yes |
| Operating System | freebsd | freebsd | 4.6.2 | Yes |
| Operating System | freebsd | freebsd | 4.7 | Yes |
| Operating System | freebsd | freebsd | 4.7 | Yes |
| Operating System | freebsd | freebsd | 4.7 | Yes |
| Operating System | freebsd | freebsd | 4.7 | Yes |
| Operating System | freebsd | freebsd | 4.7 | Yes |
| Operating System | freebsd | freebsd | 4.8 | Yes |
| Operating System | freebsd | freebsd | 4.8 | Yes |
| Operating System | freebsd | freebsd | 4.8 | Yes |
| Operating System | freebsd | freebsd | 4.8 | Yes |
| Operating System | freebsd | freebsd | 4.9 | Yes |
| Operating System | freebsd | freebsd | 4.9 | Yes |
| Operating System | freebsd | freebsd | 4.9 | Yes |
| Operating System | freebsd | freebsd | 4.10 | Yes |
| Operating System | freebsd | freebsd | 4.10 | Yes |
| Operating System | freebsd | freebsd | 4.10 | Yes |
| Operating System | freebsd | freebsd | 4.11 | Yes |
| Operating System | freebsd | freebsd | 5.0 | Yes |
| Operating System | freebsd | freebsd | 5.0 | Yes |
| Operating System | freebsd | freebsd | 5.0 | Yes |
| Operating System | freebsd | freebsd | 5.0 | Yes |
| Operating System | freebsd | freebsd | 5.1 | Yes |
| Operating System | freebsd | freebsd | 5.1 | Yes |
| Operating System | freebsd | freebsd | 5.1 | Yes |
| Operating System | freebsd | freebsd | 5.1 | Yes |
| Operating System | freebsd | freebsd | 5.1 | Yes |
| Operating System | freebsd | freebsd | 5.2 | Yes |
| Operating System | freebsd | freebsd | 5.2.1 | Yes |
| Operating System | freebsd | freebsd | 5.2.1 | Yes |
| Operating System | freebsd | freebsd | 5.3 | Yes |
| Operating System | freebsd | freebsd | 5.3 | Yes |
| Operating System | freebsd | freebsd | 5.3 | Yes |
| Operating System | freebsd | freebsd | 5.3 | Yes |
| Operating System | freebsd | freebsd | 5.4 | Yes |
| Operating System | freebsd | freebsd | 5.4 | Yes |