Lucene search

[email protected]CVE-2001-1029

HistorySep 20, 2001 - 4:00 a.m.

CVE-2001-1029

2001-09-2004:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

openssh

freebsd 4.4

privilege escalation

file access

cve-2001-1029

6.6 Medium

AI Score

Confidence

Low

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

0.4%

JSON

libutil in OpenSSH on FreeBSD 4.4 and earlier does not drop privileges before verifying the capabilities for reading the copyright and welcome files, which allows local users to bypass the capabilities checks and read arbitrary files by specifying alternate copyright or welcome files.

CPENameOperatorVersion
openbsd:opensshopenbsd openssheq4.5
freebsd:freebsdfreebsdle4.4

CPE	Name	Operator	Version
openbsd:openssh	openbsd openssh	eq	4.5
freebsd:freebsd	freebsd	le	4.4

References

archives.neohapsis.com/archives/bugtraq/2001-09/0173.html

www.osvdb.org/6073

exchange.xforce.ibmcloud.com/vulnerabilities/8697

6.6 Medium

AI Score

Confidence

Low

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

0.4%

JSON

Related for CVE-2001-1029

nessus1