Lucene search

[email protected]CVE-2001-1411

HistoryNov 17, 2003 - 5:00 a.m.

CVE-2001-1411

2003-11-1705:00:00

[email protected]

web.nvd.nist.gov

mac os x

gm4

format string vulnerability

privilege escalation

local users

setuid programs

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

7 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.6%

JSON

Format string vulnerability in gm4 (aka m4) on Mac OS X may allow local users to gain privileges if gm4 is called by setuid programs.

Affected configurations

NVD

Node

applemac_os_xMatch10.4.9

CPENameOperatorVersion
apple:mac_os_xapple mac os xeq10.4.9

CPE	Name	Operator	Version
apple:mac_os_x	apple mac os x	eq	10.4.9

References

lists.apple.com/mhonarc/security-announce/msg00038.html

marc.info/?l=bugtraq&m=100368233714229&w=2

www.iss.net/security_center/static/10174.php

www.kb.cert.org/vuls/id/147587

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

7 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.6%

JSON

Related for CVE-2001-1411

nvd1 cvelist1