Lucene search

[email protected]CVE-2000-1136

HistoryJan 09, 2001 - 5:00 a.m.

CVE-2000-1136

2001-01-0905:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2000-1136

elvis-tiny

debian gnu/linux

linux

symlink attack

file overwrite

local users.

7.1 High

AI Score

Confidence

Low

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

5.3%

JSON

elvis-tiny before 1.4-10 in Debian GNU/Linux, and possibly other Linux operating systems, allows local users to overwrite files of other users via a symlink attack.

CPENameOperatorVersion
debian:elvis_tinydebian elvis tinyle1.4.9

CPE	Name	Operator	Version
debian:elvis_tiny	debian elvis tiny	le	1.4.9

References

marc.info/?l=bugtraq&m=97502995616099&w=2

www.securityfocus.com/bid/1984

exchange.xforce.ibmcloud.com/vulnerabilities/5632

7.1 High

AI Score

Confidence

Low

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

5.3%

JSON