6.3 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.014 Low
EPSS
Percentile
86.6%
The login program in util-linux 2.11 and earlier uses a pointer after it has been freed and reallocated, which could cause login to leak sensitive data.
CPE | Name | Operator | Version |
---|---|---|---|
andries_brouwer:util-linux | andries brouwer util-linux | le | 2.11 |
ftp://patches.sgi.com/support/free/security/advisories/20040201-01-U.asc
ftp://patches.sgi.com/support/free/security/advisories/20040406-01-U
marc.info/?l=bugtraq&m=108077689801698&w=2
marc.info/?l=bugtraq&m=108144719532385&w=2
secunia.com/advisories/10773
security.gentoo.org/glsa/glsa-200404-06.xml
www.kb.cert.org/vuls/id/801526
www.osvdb.org/3796
www.redhat.com/support/errata/RHSA-2004-056.html
www.securityfocus.com/bid/9558
exchange.xforce.ibmcloud.com/vulnerabilities/15016