Lucene search

[email protected]CVE-2001-0141

HistoryMar 12, 2001 - 5:00 a.m.

CVE-2001-0141

2001-03-1205:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2001-0141

mgetty

local attack

symlink attack

file overwrite

nvd

6.4 Medium

AI Score

Confidence

Low

1.2 Low

CVSS2

Access Vector

LOCAL

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:H/Au:N/C:N/I:P/A:N

0.0004 Low

EPSS

Percentile

5.3%

JSON

mgetty 1.1.22 allows local users to overwrite arbitrary files via a symlink attack in some configurations.

CPENameOperatorVersion
gert_doering:mgettygert doering mgettyeq1.1.22

CPE	Name	Operator	Version
gert_doering:mgetty	gert doering mgetty	eq	1.1.22

References

marc.info/?l=bugtraq&m=97916374410647&w=2

www.calderasystems.com/support/security/advisories/CSSA-2001-002.0.txt

www.debian.org/security/2001/dsa-011

www.linux-mandrake.com/en/security/2001/MDKSA-2001-009.php3

www.redhat.com/support/errata/RHSA-2001-050.html

www.securityfocus.com/bid/2187

exchange.xforce.ibmcloud.com/vulnerabilities/5918

6.4 Medium

AI Score

Confidence

Low

1.2 Low

CVSS2

Access Vector

LOCAL

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:H/Au:N/C:N/I:P/A:N

0.0004 Low

EPSS

Percentile

5.3%

JSON

Related for CVE-2001-0141

openvas2 nessus2 cert1