Lucene search

K
cve[email protected]CVE-2001-1146
HistoryJul 11, 2001 - 4:00 a.m.

CVE-2001-1146

2001-07-1104:00:00
NVD-CWE-Other
web.nvd.nist.gov
18
cve-2001-1146
allcommerce
engarde secure linux 1.0.1
debugging
symlink attack
insecure temporary file creation vulnerability
nvd.

7 High

AI Score

Confidence

Low

1.2 Low

CVSS2

Access Vector

LOCAL

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:H/Au:N/C:N/I:P/A:N

0.0004 Low

EPSS

Percentile

5.3%

AllCommerce with debugging enabled in EnGarde Secure Linux 1.0.1 creates temporary files with predictable names, which allows local users to modify files via a symlink attack.

7 High

AI Score

Confidence

Low

1.2 Low

CVSS2

Access Vector

LOCAL

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:H/Au:N/C:N/I:P/A:N

0.0004 Low

EPSS

Percentile

5.3%