Lucene search

[email protected]NVD:CVE-2003-1379

HistoryDec 31, 2003 - 5:00 a.m.

CVE-2003-1379

2003-12-3105:00:00

CWE-200

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.2

Confidence

Low

EPSS

0.005

Percentile

76.2%

JSON

clarkconnectd in ClarkConnect Linux 1.2 allows remote attackers to obtain sensitive information about the server via the characters (1) A, which reveals the date and time, (2) F, (3) M, which reveals ‘ifconfig’ information, (4) P, which lists the processes, (5) Y, which reveals the snort log files, or (6) b, which reveals /var/log/messages.

Affected configurations

Nvd

Node

point_clark_networksclarkconnectMatch1.2linux

VendorProductVersionCPE
point_clark_networksclarkconnect1.2cpe:2.3:h:point_clark_networks:clarkconnect:1.2:*:linux:*:*:*:*:*

Vendor	Product	Version	CPE
point_clark_networks	clarkconnect	1.2	cpe:2.3:h:point_clark_networks:clarkconnect:1.2::linux:::::

References

www.securityfocus.com/archive/1/313080

www.securityfocus.com/bid/6934

exchange.xforce.ibmcloud.com/vulnerabilities/11419

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.2

Confidence

Low

EPSS

0.005

Percentile

76.2%

JSON

Related for NVD:CVE-2003-1379

cvelist1 cve1 nessus1