Lucene search
HistoryAug 27, 2003 - 4:00 a.m.
CVE-2003-0596
fdclone
cve-2003-0596
security
files
directories
local users
3.6 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:P/A:N
6 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
FDclone 2.00a, and other versions before 2.02a, creates temporary directories with predictable names and uses them if they already exist, which allows local users to read or modify files of other fdclone users by creating the directory ahead of time.
Affected configurations
Node
fdclonefdcloneMatch2.00a
| CPE | Name | Operator | Version |
|---|---|---|---|
| fdclone:fdclone | fdclone | eq | 2.00a |
Related
openvas
openvas
Debian: Security Advisory (DSA-352)
2008-01-17 00:00:00
Debian Security Advisory DSA 352-1 (fdclone)
2008-01-17 00:00:00
cvelist
cvelist
CVE-2003-0596
2003-07-25 04:00:00
debiancve
debiancve
CVE-2003-0596
2003-08-27 04:00:00
debian
debian
nvd
nvd
CVE-2003-0596
2003-08-27 04:00:00
nessus
nessus
Debian DSA-352-1 : fdclone - insecure temporary directory
2004-09-29 00:00:00
osv
osv
fdclone - insecure temporary directory
2003-07-22 00:00:00
3.6 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:P/A:N
6 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
Related for CVE-2003-0596