Lucene search

[email protected]CVE-2001-0229

HistoryMay 03, 2001 - 4:00 a.m.

CVE-2001-0229

2001-05-0304:00:00

[email protected]

web.nvd.nist.gov

cve-2001-0229

chili!soft asp

linux

privilege escalation

inherited mode

security flaw

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

7.2 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

13.4%

JSON

Chili!Soft ASP for Linux before 3.6 does not properly set group privileges when running in inherited mode, which could allow attackers to gain privileges via malicious scripts.

Affected configurations

NVD

Node

sunchilisoftRange≤3.6

CPENameOperatorVersion
sun:chilisoftsun chilisoftle3.6

CPE	Name	Operator	Version
sun:chilisoft	sun chilisoft	le	3.6

References

archives.neohapsis.com/archives/bugtraq/2001-02/0112.html

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

7.2 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

13.4%

JSON

Related for CVE-2001-0229

nvd1 cvelist1