Lucene search

MitreCVE-2002-0570

HistoryJul 03, 2002 - 4:00 a.m.

CVE-2002-0570

2002-07-0304:00:00

mitre

web.nvd.nist.gov

linux

kernel

encryption

data security

cve-2002-0570

nvd

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.5

Confidence

Low

EPSS

Percentile

5.1%

JSON

The encrypted loop device in Linux kernel 2.4.10 and earlier does not authenticate the entity that is encrypting data, which allows local users to modify encrypted data without knowing the key.

Affected configurations

Nvd

Node

linuxlinux_kernelMatch2.2.0

linuxlinux_kernelMatch2.2.1

linuxlinux_kernelMatch2.2.2

linuxlinux_kernelMatch2.2.3

linuxlinux_kernelMatch2.2.4

linuxlinux_kernelMatch2.2.5

linuxlinux_kernelMatch2.2.6

linuxlinux_kernelMatch2.2.7

linuxlinux_kernelMatch2.2.8

linuxlinux_kernelMatch2.2.9

linuxlinux_kernelMatch2.2.10

linuxlinux_kernelMatch2.2.11

linuxlinux_kernelMatch2.2.12

linuxlinux_kernelMatch2.2.13

linuxlinux_kernelMatch2.2.14

linuxlinux_kernelMatch2.2.15

linuxlinux_kernelMatch2.2.16

linuxlinux_kernelMatch2.2.17

linuxlinux_kernelMatch2.2.18

linuxlinux_kernelMatch2.2.19

linuxlinux_kernelMatch2.2.20

linuxlinux_kernelMatch2.4.0

linuxlinux_kernelMatch2.4.1

linuxlinux_kernelMatch2.4.2

linuxlinux_kernelMatch2.4.3

linuxlinux_kernelMatch2.4.4

linuxlinux_kernelMatch2.4.5

linuxlinux_kernelMatch2.4.6

linuxlinux_kernelMatch2.4.7

linuxlinux_kernelMatch2.4.8

linuxlinux_kernelMatch2.4.9

linuxlinux_kernelMatch2.4.10

linuxlinux_kernelMatch2.4.11

linuxlinux_kernelMatch2.4.12

linuxlinux_kernelMatch2.4.13

linuxlinux_kernelMatch2.4.14

linuxlinux_kernelMatch2.4.15

linuxlinux_kernelMatch2.4.16

linuxlinux_kernelMatch2.4.17

VendorProductVersionCPE
linuxlinux_kernel2.2.0cpe:2.3:o:linux:linux_kernel:2.2.0:*:*:*:*:*:*:*
linuxlinux_kernel2.2.1cpe:2.3:o:linux:linux_kernel:2.2.1:*:*:*:*:*:*:*
linuxlinux_kernel2.2.2cpe:2.3:o:linux:linux_kernel:2.2.2:*:*:*:*:*:*:*
linuxlinux_kernel2.2.3cpe:2.3:o:linux:linux_kernel:2.2.3:*:*:*:*:*:*:*
linuxlinux_kernel2.2.4cpe:2.3:o:linux:linux_kernel:2.2.4:*:*:*:*:*:*:*
linuxlinux_kernel2.2.5cpe:2.3:o:linux:linux_kernel:2.2.5:*:*:*:*:*:*:*
linuxlinux_kernel2.2.6cpe:2.3:o:linux:linux_kernel:2.2.6:*:*:*:*:*:*:*
linuxlinux_kernel2.2.7cpe:2.3:o:linux:linux_kernel:2.2.7:*:*:*:*:*:*:*
linuxlinux_kernel2.2.8cpe:2.3:o:linux:linux_kernel:2.2.8:*:*:*:*:*:*:*
linuxlinux_kernel2.2.9cpe:2.3:o:linux:linux_kernel:2.2.9:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
linux	linux_kernel	2.2.0	cpe:2.3:o:linux:linux_kernel:2.2.0:::::::*
linux	linux_kernel	2.2.1	cpe:2.3:o:linux:linux_kernel:2.2.1:::::::*
linux	linux_kernel	2.2.2	cpe:2.3:o:linux:linux_kernel:2.2.2:::::::*
linux	linux_kernel	2.2.3	cpe:2.3:o:linux:linux_kernel:2.2.3:::::::*
linux	linux_kernel	2.2.4	cpe:2.3:o:linux:linux_kernel:2.2.4:::::::*
linux	linux_kernel	2.2.5	cpe:2.3:o:linux:linux_kernel:2.2.5:::::::*
linux	linux_kernel	2.2.6	cpe:2.3:o:linux:linux_kernel:2.2.6:::::::*
linux	linux_kernel	2.2.7	cpe:2.3:o:linux:linux_kernel:2.2.7:::::::*
linux	linux_kernel	2.2.8	cpe:2.3:o:linux:linux_kernel:2.2.8:::::::*
linux	linux_kernel	2.2.9	cpe:2.3:o:linux:linux_kernel:2.2.9:::::::*

Rows per page:

1-10 of 391

References

archives.neohapsis.com/archives/bugtraq/2002-01/0010.html

www.securityfocus.com/bid/3775

exchange.xforce.ibmcloud.com/vulnerabilities/7769

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.5

Confidence

Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2002-0570