{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2003-07-08T00:00:00", "descriptions": [{"lang": "en", "value": "skk (Simple Kana to Kanji conversion program) 12.1 and earlier, and the ddskk package which is based on skk, creates temporary files insecurely, which allows local users to overwrite arbitrary files."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-10-10T00:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "oval:org.mitre.oval:def:28", "tags": ["vdb-entry", "signature", "x_refsource_OVAL"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A28"}, {"name": "RHSA-2003:242", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://www.redhat.com/support/errata/RHSA-2003-242.html"}, {"name": "DSA-343", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2003/dsa-343"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2003-0539", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "skk (Simple Kana to Kanji conversion program) 12.1 and earlier, and the ddskk package which is based on skk, creates temporary files insecurely, which allows local users to overwrite arbitrary files."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "oval:org.mitre.oval:def:28", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A28"}, {"name": "RHSA-2003:242", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2003-242.html"}, {"name": "DSA-343", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2003/dsa-343"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-08T01:58:10.875Z"}, "title": "CVE Program Container", "references": [{"name": "oval:org.mitre.oval:def:28", "tags": ["vdb-entry", "signature", "x_refsource_OVAL", "x_transferred"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A28"}, {"name": "RHSA-2003:242", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://www.redhat.com/support/errata/RHSA-2003-242.html"}, {"name": "DSA-343", "tags": ["vendor-advisory", "x_refsource_DEBIAN", "x_transferred"], "url": "http://www.debian.org/security/2003/dsa-343"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2003-0539", "datePublished": "2003-07-10T04:00:00", "dateReserved": "2003-07-09T00:00:00", "dateUpdated": "2024-08-08T01:58:10.875Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ddskk:ddskk:11.6_.rel.0:*:*:*:*:*:*:*", "matchCriteriaId": "938E0EA9-D807-4D39-8724-0D407221F786", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:daredevil_skk:11.3.2:*:noarch:*:*:*:*:*", "matchCriteriaId": "F704FE85-A740-4941-B733-29A8F176B62E", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:daredevil_skk:11.3.5:*:noarch:*:*:*:*:*", "matchCriteriaId": "C0165BBE-6BD6-43ED-809A-7A5A4724B3ED", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:daredevil_skk:11.6.0-6:*:noarch:*:*:*:*:*", "matchCriteriaId": "33611624-B62E-4C05-8877-9B0BC39719F5", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:daredevil_skk:11.6.0-8:*:noarch:*:*:*:*:*", "matchCriteriaId": "F6EF27D8-ED1A-41F0-B6B0-CF7C232D1C4A", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:daredevil_skk:11.6.0-10:*:noarch:*:*:*:*:*", "matchCriteriaId": "6F0FCA36-FA51-4134-A25C-BC7224CB7FC6", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:ddskk-xemacs:11.6.0-6:*:noarch:*:*:*:*:*", "matchCriteriaId": "143B1AEB-14BF-4CE5-9B87-58CF3ECCD422", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:ddskk-xemacs:11.6.0-8:*:noarch:*:*:*:*:*", "matchCriteriaId": "30FCF59B-DD32-4AF0-83FB-1AA09DD4414F", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:ddskk-xemacs:11.6.0-10:*:noarch:*:*:*:*:*", "matchCriteriaId": "E46675C5-079B-44C6-B538-A027F104F5CB", "vulnerable": true}, {"criteria": "cpe:2.3:a:skk:skk:10.62a:*:*:*:*:*:*:*", "matchCriteriaId": "3E4F9BC9-4B91-4E25-B881-0D62201D915D", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "skk (Simple Kana to Kanji conversion program) 12.1 and earlier, and the ddskk package which is based on skk, creates temporary files insecurely, which allows local users to overwrite arbitrary files."}, {"lang": "es", "value": "skk (programa de conversi\u00f3n Simple Kana a Kanji) 12.1 y anteriores, y el paquete ddskk basado en skk, crea ficheros temporales de forma no segura, lo que permite a usuarios locales sobreescribir ficheros arbitrarios."}], "id": "CVE-2003-0539", "lastModified": "2024-11-20T23:44:58.203", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": true, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2003-08-18T04:00:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.debian.org/security/2003/dsa-343"}, {"source": "cve@mitre.org", "url": "http://www.redhat.com/support/errata/RHSA-2003-242.html"}, {"source": "cve@mitre.org", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A28"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.debian.org/security/2003/dsa-343"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.redhat.com/support/errata/RHSA-2003-242.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A28"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"affected_release": [{"advisory": "RHSA-2003:242", "cpe": "cpe:/o:redhat:enterprise_linux:2.1", "product_name": "Red Hat Enterprise Linux AS (Advanced Server) version 2.1", "release_date": "2003-08-11T00:00:00Z"}, {"advisory": "RHSA-2003:242", "cpe": "cpe:/o:redhat:enterprise_linux:2.1", "product_name": "Red Hat Enterprise Linux ES version 2.1", "release_date": "2003-08-11T00:00:00Z"}, {"advisory": "RHSA-2003:242", "cpe": "cpe:/o:redhat:enterprise_linux:2.1", "product_name": "Red Hat Enterprise Linux WS version 2.1", "release_date": "2003-08-11T00:00:00Z"}, {"advisory": "RHSA-2003:241", "cpe": "cpe:/o:redhat:linux:7.1", "product_name": "Red Hat Linux 7.1", "release_date": "2003-08-11T00:00:00Z"}, {"advisory": "RHSA-2003:241", "cpe": "cpe:/o:redhat:linux:7.2", "product_name": "Red Hat Linux 7.2", "release_date": "2003-08-11T00:00:00Z"}, {"advisory": "RHSA-2003:241", "cpe": "cpe:/o:redhat:linux:7.3", "product_name": "Red Hat Linux 7.3", "release_date": "2003-08-11T00:00:00Z"}, {"advisory": "RHSA-2003:241", "cpe": "cpe:/o:redhat:linux:8.0", "product_name": "Red Hat Linux 8.0", "release_date": "2003-08-11T00:00:00Z"}, {"advisory": "RHSA-2003:241", "cpe": "cpe:/o:redhat:linux:9", "product_name": "Red Hat Linux 9", "release_date": "2003-08-11T00:00:00Z"}, {"advisory": "RHSA-2003:242", "cpe": "cpe:/o:redhat:enterprise_linux:2.1", "product_name": "Red Hat Linux Advanced Workstation 2.1", "release_date": "2003-08-11T00:00:00Z"}], "bugzilla": {"description": "security flaw", "id": "1617045", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617045"}, "csaw": false, "details": ["skk (Simple Kana to Kanji conversion program) 12.1 and earlier, and the ddskk package which is based on skk, creates temporary files insecurely, which allows local users to overwrite arbitrary files."], "name": "CVE-2003-0539", "public_date": "2003-07-08T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2003-0539\nhttps://nvd.nist.gov/vuln/detail/CVE-2003-0539"], "threat_severity": "Low"}