Lucene search

[email protected]NVD:CVE-2003-1366

HistoryDec 31, 2003 - 5:00 a.m.

CVE-2003-1366

2003-12-3105:00:00

CWE-200

[email protected]

web.nvd.nist.gov

CVSS2

3.3

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:P/A:N

AI Score

6.2

Confidence

Low

EPSS

0.001

Percentile

17.9%

JSON

chpass in OpenBSD 2.0 through 3.2 allows local users to read portions of arbitrary files via a hard link attack on a temporary file used to store user database information.

Affected configurations

Nvd

Node

openbsdopenbsdMatch2.0

openbsdopenbsdMatch2.1

openbsdopenbsdMatch2.2

openbsdopenbsdMatch2.3

openbsdopenbsdMatch2.4

openbsdopenbsdMatch2.5

openbsdopenbsdMatch2.6

openbsdopenbsdMatch2.7

openbsdopenbsdMatch2.8

openbsdopenbsdMatch2.9

openbsdopenbsdMatch3.0

openbsdopenbsdMatch3.1

openbsdopenbsdMatch3.2

VendorProductVersionCPE
openbsdopenbsd2.0cpe:2.3:o:openbsd:openbsd:2.0:*:*:*:*:*:*:*
openbsdopenbsd2.1cpe:2.3:o:openbsd:openbsd:2.1:*:*:*:*:*:*:*
openbsdopenbsd2.2cpe:2.3:o:openbsd:openbsd:2.2:*:*:*:*:*:*:*
openbsdopenbsd2.3cpe:2.3:o:openbsd:openbsd:2.3:*:*:*:*:*:*:*
openbsdopenbsd2.4cpe:2.3:o:openbsd:openbsd:2.4:*:*:*:*:*:*:*
openbsdopenbsd2.5cpe:2.3:o:openbsd:openbsd:2.5:*:*:*:*:*:*:*
openbsdopenbsd2.6cpe:2.3:o:openbsd:openbsd:2.6:*:*:*:*:*:*:*
openbsdopenbsd2.7cpe:2.3:o:openbsd:openbsd:2.7:*:*:*:*:*:*:*
openbsdopenbsd2.8cpe:2.3:o:openbsd:openbsd:2.8:*:*:*:*:*:*:*
openbsdopenbsd2.9cpe:2.3:o:openbsd:openbsd:2.9:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
openbsd	openbsd	2.0	cpe:2.3:o:openbsd:openbsd:2.0:::::::*
openbsd	openbsd	2.1	cpe:2.3:o:openbsd:openbsd:2.1:::::::*
openbsd	openbsd	2.2	cpe:2.3:o:openbsd:openbsd:2.2:::::::*
openbsd	openbsd	2.3	cpe:2.3:o:openbsd:openbsd:2.3:::::::*
openbsd	openbsd	2.4	cpe:2.3:o:openbsd:openbsd:2.4:::::::*
openbsd	openbsd	2.5	cpe:2.3:o:openbsd:openbsd:2.5:::::::*
openbsd	openbsd	2.6	cpe:2.3:o:openbsd:openbsd:2.6:::::::*
openbsd	openbsd	2.7	cpe:2.3:o:openbsd:openbsd:2.7:::::::*
openbsd	openbsd	2.8	cpe:2.3:o:openbsd:openbsd:2.8:::::::*
openbsd	openbsd	2.9	cpe:2.3:o:openbsd:openbsd:2.9:::::::*

Rows per page:

1-10 of 131

References

securityreason.com/securityalert/3238

www.epita.fr/~bevand_m/asa/asa-0001

www.securityfocus.com/archive/1/309962

www.securityfocus.com/bid/6748

www.securitytracker.com/id?1006035

exchange.xforce.ibmcloud.com/vulnerabilities/11233

CVSS2

3.3

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:P/A:N

AI Score

6.2

Confidence

Low

EPSS

0.001

Percentile

17.9%

JSON

Related for NVD:CVE-2003-1366

exploitdb1 cve1 cvelist1