Lucene search

[email protected]CVE-2002-0129

HistoryMar 25, 2002 - 5:00 a.m.

CVE-2002-0129

2002-03-2505:00:00

[email protected]

web.nvd.nist.gov

118

efax 0.9

setuid root

local users

arbitrary file access

nvd

cve-2002-0129.

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

6.3 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

efax 0.9 and earlier, when installed setuid root, allows local users to read arbitrary files via the -d option, which prints the contents of the file in a warning message.

Affected configurations

NVD

Node

efaxefaxMatch0.8a

efaxefaxMatch0.9

efaxefaxMatch0.9a

CPENameOperatorVersion
efax:efaxefaxeq0.8a
efax:efaxefaxeq0.9
efax:efaxefaxeq0.9a

CPE	Name	Operator	Version
efax:efax	efax	eq	0.8a
efax:efax	efax	eq	0.9
efax:efax	efax	eq	0.9a

References

marc.info/?l=vuln-dev&m=101114350330912&w=2

seclists.org/bugtraq/2002/Jan/0212.html

www.iss.net/security_center/static/7921.php

www.securityfocus.com/bid/3895

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

6.3 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2002-0129

cvelist1 nvd1 cbl_mariner1