silc daemon (silcd.c) in Secure Internet Live Conferencing (SILC) 1.0 and earlier allows local users to overwrite arbitrary files via a symlink attack on the silcd.[PID].stats temporary file.
2005-09-07T18:03:00.000
2025-04-03T01:03:51.193
Deferred
CVSSv2: 2.1 (LOW)
AV:L/AC:L/Au:N/C:N/I:P/A:N
3.9
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | silc | secure_internet_live_conferencing | 0.9.11 | Yes |
| Application | silc | secure_internet_live_conferencing | 0.9.12 | Yes |
| Application | silc | secure_internet_live_conferencing | 0.9.13 | Yes |
| Application | silc | secure_internet_live_conferencing | 0.9.14 | Yes |
| Application | silc | secure_internet_live_conferencing | 0.9.15 | Yes |
| Application | silc | secure_internet_live_conferencing | 0.9.16 | Yes |
| Application | silc | secure_internet_live_conferencing | 0.9.17 | Yes |
| Application | silc | secure_internet_live_conferencing | 0.9.18 | Yes |
| Application | silc | secure_internet_live_conferencing | 0.9.19 | Yes |
| Application | silc | secure_internet_live_conferencing | 0.9.20 | Yes |
| Application | silc | secure_internet_live_conferencing | 0.9.21 | Yes |
| Application | silc | secure_internet_live_conferencing | 1.0 | Yes |