Lucene search

MitreCVE-2002-0213

HistoryApr 02, 2003 - 5:00 a.m.

CVE-2002-0213

2003-04-0205:00:00

mitre

web.nvd.nist.gov

xinet k-ashare

irix

cve-2002-0213

symlink attack

local user

file access

vulnerability

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.3

Confidence

High

EPSS

Percentile

5.1%

JSON

xkas in Xinet K-AShare 0.011.01 for IRIX allows local users to read arbitrary files via a symlink attack on the VOLICON file, which is copied to the .HSicon file in a shared directory.

Affected configurations

Nvd

Node

xinetk-ashareMatch11.01

sgiirixMatch6.5

sgiirixMatch6.5.1

sgiirixMatch6.5.2

sgiirixMatch6.5.3

sgiirixMatch6.5.4

sgiirixMatch6.5.5

sgiirixMatch6.5.6

sgiirixMatch6.5.7

sgiirixMatch6.5.8

sgiirixMatch6.5.9

sgiirixMatch6.5.10

sgiirixMatch6.5.11

sgiirixMatch6.5.12

sgiirixMatch6.5.13

sgiirixMatch6.5.14

sgiirixMatch6.5.15

VendorProductVersionCPE
xinetk-ashare11.01cpe:2.3:a:xinet:k-ashare:11.01:*:*:*:*:*:*:*
sgiirix6.5cpe:2.3:o:sgi:irix:6.5:*:*:*:*:*:*:*
sgiirix6.5.1cpe:2.3:o:sgi:irix:6.5.1:*:*:*:*:*:*:*
sgiirix6.5.2cpe:2.3:o:sgi:irix:6.5.2:*:*:*:*:*:*:*
sgiirix6.5.3cpe:2.3:o:sgi:irix:6.5.3:*:*:*:*:*:*:*
sgiirix6.5.4cpe:2.3:o:sgi:irix:6.5.4:*:*:*:*:*:*:*
sgiirix6.5.5cpe:2.3:o:sgi:irix:6.5.5:*:*:*:*:*:*:*
sgiirix6.5.6cpe:2.3:o:sgi:irix:6.5.6:*:*:*:*:*:*:*
sgiirix6.5.7cpe:2.3:o:sgi:irix:6.5.7:*:*:*:*:*:*:*
sgiirix6.5.8cpe:2.3:o:sgi:irix:6.5.8:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
xinet	k-ashare	11.01	cpe:2.3:a:xinet:k-ashare:11.01:::::::*
sgi	irix	6.5	cpe:2.3:o:sgi:irix:6.5:::::::*
sgi	irix	6.5.1	cpe:2.3:o:sgi:irix:6.5.1:::::::*
sgi	irix	6.5.2	cpe:2.3:o:sgi:irix:6.5.2:::::::*
sgi	irix	6.5.3	cpe:2.3:o:sgi:irix:6.5.3:::::::*
sgi	irix	6.5.4	cpe:2.3:o:sgi:irix:6.5.4:::::::*
sgi	irix	6.5.5	cpe:2.3:o:sgi:irix:6.5.5:::::::*
sgi	irix	6.5.6	cpe:2.3:o:sgi:irix:6.5.6:::::::*
sgi	irix	6.5.7	cpe:2.3:o:sgi:irix:6.5.7:::::::*
sgi	irix	6.5.8	cpe:2.3:o:sgi:irix:6.5.8:::::::*

Rows per page:

1-10 of 171

References

ftp://patches.sgi.com/support/free/security/advisories/20020604-01-I

marc.info/?l=bugtraq&m=101223525118717&w=2

www.iss.net/security_center/static/8002.php

www.securityfocus.com/bid/3969

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.3

Confidence

High

EPSS

Percentile

5.1%

JSON

Related for CVE-2002-0213