4 matches found
CVE-2003-1399
eject 2.0.10, when installed setuid on systems such as SuSE Linux 7.3, generates different error messages depending on whether a specified file exists or not, which allows local users to obtain sensitive information...
CVE-2003-1399
Removed by vendor...
CVE-2003-1399
CVE-2003-1399 relates to eject 2.0.10 installed with setuid on systems like SuSE Linux 7.3. The issue is that error messages vary depending on whether a specific file exists, enabling local users to obtain sensitive information. The consolidated documents confirm the vulnerable component (eject 2...
CVE-2003-1399
eject 2.0.10, when installed setuid on systems such as SuSE Linux 7.3, generates different error messages depending on whether a specified file exists or not, which allows local users to obtain sensitive information...