Lucene search

PRIOn knowledge basePRION:CVE-2010-0119

HistoryFeb 25, 2010 - 12:30 a.m.

Command injection

2010-02-2500:30:00

PRIOn knowledge base

www.prio-n.com

6.2 Medium

AI Score

Confidence

Low

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

5.4%

JSON

Bournal before 1.4.1 on FreeBSD 8.0, when the -K option is used, places a ccrypt key on the command line, which allows local users to obtain sensitive information by listing the process and its arguments, related to “echoing.”

CPENameOperatorVersion
bournalle1.4
bournaleq0.1
bournaleq0.2
bournaleq0.3
bournaleq0.4
bournaleq0.4.5
bournaleq0.6
bournaleq0.7
bournaleq0.8
bournaleq0.9

Name	Operator	Version
bournal	le	1.4
bournal	eq	0.1
bournal	eq	0.2
bournal	eq	0.3
bournal	eq	0.4
bournal	eq	0.4.5
bournal	eq	0.6
bournal	eq	0.7
bournal	eq	0.8
bournal	eq	0.9

Rows per page:

1-10 of 141

References

secunia.com/advisories/38723

secunia.com/advisories/38814

secunia.com/secunia_research/2010-7/

www.securityfocus.com/archive/1/509688/100/0/threaded

www.securityfocus.com/bid/38352

lists.fedoraproject.org/pipermail/package-announce/2010-March/036697.html

lists.fedoraproject.org/pipermail/package-announce/2010-March/036701.html

lists.fedoraproject.org/pipermail/package-announce/2010-March/036764.html

6.2 Medium

AI Score

Confidence

Low

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

5.4%

JSON

Related for PRION:CVE-2010-0119