CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
High
EPSS
Percentile
71.2%
XFree86 xfs command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service.
Vendor | Product | Version | CPE |
---|---|---|---|
caldera | openlinux | 1.2 | cpe:2.3:o:caldera:openlinux:1.2:*:*:*:*:*:*:* |
debian | debian_linux | 2.0 | cpe:2.3:o:debian:debian_linux:2.0:*:*:*:*:*:*:* |
debian | debian_linux | 2.0 | cpe:2.3:o:debian:debian_linux:2.0:r5:*:*:*:*:*:* |
debian | debian_linux | 2.1 | cpe:2.3:o:debian:debian_linux:2.1:*:*:*:*:*:*:* |
netbsd | netbsd | 1.3.3 | cpe:2.3:o:netbsd:netbsd:1.3.3:*:*:*:*:*:*:* |
redhat | linux | 5.1 | cpe:2.3:o:redhat:linux:5.1:*:*:*:*:*:*:* |
suse | suse_linux | 5.3 | cpe:2.3:o:suse:suse_linux:5.3:*:*:*:*:*:*:* |