Lucene search

[email protected]CVE-2001-1119

HistoryJun 25, 2002 - 4:00 a.m.

CVE-2001-1119

2002-06-2504:00:00

[email protected]

web.nvd.nist.gov

cve-2001-1119

suse linux

xmcd

symlink attack

overwrite

local users

nvd

6.4 Medium

AI Score

Confidence

High

6.2 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:H/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.3%

JSON

cda in xmcd 3.0.2 and 2.6 in SuSE Linux allows local users to overwrite arbitrary files via a symlink attack.

Affected configurations

NVD

Node

ti_kanxmcdMatch2.6.0

ti_kanxmcdMatch3.0.0

ti_kanxmcdMatch3.0.1

CPENameOperatorVersion
ti_kan:xmcdti kan xmcdeq2.6.0
ti_kan:xmcdti kan xmcdeq3.0.0
ti_kan:xmcdti kan xmcdeq3.0.1

CPE	Name	Operator	Version
ti_kan:xmcd	ti kan xmcd	eq	2.6.0
ti_kan:xmcd	ti kan xmcd	eq	3.0.0
ti_kan:xmcd	ti kan xmcd	eq	3.0.1

References

www.kb.cert.org/vuls/id/105347

www.novell.com/linux/security/advisories/2001_025_xmcd_txt.html

www.securityfocus.com/bid/3148

exchange.xforce.ibmcloud.com/vulnerabilities/6941

6.4 Medium

AI Score

Confidence

High

6.2 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:H/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.3%

JSON

Related for CVE-2001-1119

cert1 nvd1 suse1 cvelist1