Lucene search

[email protected]CVE-1999-0862

HistoryFeb 04, 2000 - 5:00 a.m.

CVE-1999-0862

2000-02-0405:00:00

[email protected]

web.nvd.nist.gov

cve-1999-0862

postgresql

insecure directory permissions

privilege escalation

plaintext password file.

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

7.1 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Insecure directory permissions in RPM distribution for PostgreSQL allows local users to gain privileges by reading a plaintext password file.

Affected configurations

NVD

Node

postgresqlpostgresqlMatch6.3.2

postgresqlpostgresqlMatch6.5.3

postgresqlpostgresqlMatch6.5.3.1

CPENameOperatorVersion
postgresql:postgresqlpostgresqleq6.3.2
postgresql:postgresqlpostgresqleq6.5.3
postgresql:postgresqlpostgresqleq6.5.3.1

CPE	Name	Operator	Version
postgresql:postgresql	postgresql	eq	6.3.2
postgresql:postgresql	postgresql	eq	6.5.3
postgresql:postgresql	postgresql	eq	6.5.3.1

References

exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0862

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

7.1 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for CVE-1999-0862

cvelist1 nvd1