Описание
eject 2.0.10, when installed setuid on systems such as SuSE Linux 7.3, generates different error messages depending on whether a specified file exists or not, which allows local users to obtain sensitive information.
eject 2.0.10, when installed setuid on systems such as SuSE Linux 7.3, generates different error messages depending on whether a specified file exists or not, which allows local users to obtain sensitive information.
EPSS
Процентиль: 19%
0.00061
Низкий
CVE ID
Связанные уязвимости
nvd
около 22 лет назад
eject 2.0.10, when installed setuid on systems such as SuSE Linux 7.3, generates different error messages depending on whether a specified file exists or not, which allows local users to obtain sensitive information.
debian
около 22 лет назад
eject 2.0.10, when installed setuid on systems such as SuSE Linux 7.3, ...
EPSS
Процентиль: 19%
0.00061
Низкий