Lucene search
HistoryDec 23, 2004 - 5:00 a.m.
CVE-2004-0563
cve-2004-0563
freenet6
configuration file
debian linux
sensitive information
local users
6.4 Medium
AI Score
Confidence
Low
2.1 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
0.0004 Low
EPSS
Percentile
5.2%
The tspc.conf configuration file in freenet6 before 0.9.6 and before 1.0 on Debian Linux has world readable permissions, which could allow local users to gain sensitive information, such as a username and password.
| CPE | Name | Operator | Version |
|---|---|---|---|
| freenet6:freenet6 | freenet6 | eq | 0.9.6 |
| freenet6:freenet6 | freenet6 | eq | 1.0 |
Related
debian
debian
[SECURITY] [DSA 555-1] New frenet6 packages fix potential information leak
2004-09-30 08:25:48
[SECURITY] [DSA 555-1] New frenet6 packages fix potential information leak
2004-09-30 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-555-1)
2008-01-17 00:00:00
Debian Security Advisory DSA 555-1 (freenet6)
2008-01-17 00:00:00
ubuntucve
ubuntucve
CVE-2004-0563
2004-12-23 00:00:00
osv
osv
freenet6 - file permissions
2004-09-30 00:00:00
nessus
nessus
Debian DSA-555-1 : freenet6 - wrong file permissions
2004-11-10 00:00:00
securityvulns
securityvulns
6.4 Medium
AI Score
Confidence
Low
2.1 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
0.0004 Low
EPSS
Percentile
5.2%
Related for CVE-2004-0563