Описание
eject 2.0.10, when installed setuid on systems such as SuSE Linux 7.3, generates different error messages depending on whether a specified file exists or not, which allows local users to obtain sensitive information.
eject 2.0.10, when installed setuid on systems such as SuSE Linux 7.3, generates different error messages depending on whether a specified file exists or not, which allows local users to obtain sensitive information.
EPSS
Процентиль: 17%
0.00055
Низкий
CVE ID
Связанные уязвимости
nvd
больше 21 года назад
eject 2.0.10, when installed setuid on systems such as SuSE Linux 7.3, generates different error messages depending on whether a specified file exists or not, which allows local users to obtain sensitive information.
debian
больше 21 года назад
eject 2.0.10, when installed setuid on systems such as SuSE Linux 7.3, ...
EPSS
Процентиль: 17%
0.00055
Низкий