Lucene search

[email protected]NVD:CVE-2004-2197

HistoryDec 31, 2004 - 5:00 a.m.

CVE-2004-2197

2004-12-3105:00:00

[email protected]

web.nvd.nist.gov

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

25.8%

JSON

kdocker.cpp in kdocker 0.1 through 0.8 does not properly check the ownership of files, which could allow local users to execute arbitrary programs.

Affected configurations

NVD

Node

kdockerkdockerMatch0.1

kdockerkdockerMatch0.2

kdockerkdockerMatch0.3

kdockerkdockerMatch0.4

kdockerkdockerMatch0.5

kdockerkdockerMatch0.6

kdockerkdockerMatch0.7

kdockerkdockerMatch0.8

References

cvs.sourceforge.net/viewcvs.py/kdocker/kdocker/src/kdocker.cpp?r1=1.10&r2=1.11&sortby=log

secunia.com/advisories/12828

securitytracker.com/id?1011688

sourceforge.net/forum/forum.php?forum_id=414631

www.osvdb.org/10729

www.securityfocus.com/bid/11419

exchange.xforce.ibmcloud.com/vulnerabilities/17718

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

25.8%

JSON

Related for NVD:CVE-2004-2197

cvelist1 cve1