CVE-2001-0906
Title: teTeX filter symlink attack on temporary files allows local privilege gain
Auth Bypass
Proof Of Concept
PoC Available for CVE-2001-0906
CWE Category
NVD-CWE-noinfo
Published Date
Jun 22, 2001
Modified Date
Jun 16, 2026
Exploit Status
Available
Score
6.2
CVSS v2.0
Exploit Probability (EPSS)
0.94%
Vulnerability Summary
CVE-2001-0906: teTeX filter before 1.0.7 allows local users to gain privileges via a symlink attack on temporary files that are produced when printing .dvi files using lpr.
Impacted Vendors
Reference Links
http://download.immunix.org/ImmunixOS/7.0/updates/IMNX-2001-70-030-01
http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-086.php3
http://www.redhat.com/support/errata/RHSA-2001-102.html
http://www.securityfocus.com/archive/1/192647
http://www.securityfocus.com/bid/2974
https://exchange.xforce.ibmcloud.com/vulnerabilities/6785
http://download.immunix.org/ImmunixOS/7.0/updates/IMNX-2001-70-030-01
http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-086.php3
http://www.redhat.com/support/errata/RHSA-2001-102.html
http://www.securityfocus.com/archive/1/192647
http://www.securityfocus.com/bid/2974
https://exchange.xforce.ibmcloud.com/vulnerabilities/6785
CVSS v2.0
Source Entity
[email protected]
Severity
MEDIUM
6.2
Access Vector
N/A
Authentication
N/A
RAW VECTOR
AV:L/AC:H/Au:N/C:C/I:C/A:C
Associated Attack Patterns (CAPEC)
Total: PatternsNo specific attack patterns mapped.
Likelihood
Severity
Page /
CVE-2001-0906 Exploits & PoCs (Proof Of Concept)
Exploit-DB
https://www.exploit-db.com/exploits/20990
MODIFIED
Vulnerability data updated via NVD.
MODIFIED
Vulnerability data or affected products updated.
PUBLISHED
Vulnerability first announced in NVD.
Attack Vector Matrix
Access Vector
N/A
Complexity
N/A
Privileges
N/A
Interaction
NONE
CVSS Vector String
AV:L/AC:H/Au:N/C:C/I:C/A:C
Affected Stack
No specific products linked.