Описание
eject 2.0.10, when installed setuid on systems such as SuSE Linux 7.3, generates different error messages depending on whether a specified file exists or not, which allows local users to obtain sensitive information.
eject 2.0.10, when installed setuid on systems such as SuSE Linux 7.3, generates different error messages depending on whether a specified file exists or not, which allows local users to obtain sensitive information.
EPSS
Процентиль: 17%
0.00055
Низкий
CVE ID
Связанные уязвимости
nvd
почти 22 года назад
eject 2.0.10, when installed setuid on systems such as SuSE Linux 7.3, generates different error messages depending on whether a specified file exists or not, which allows local users to obtain sensitive information.
debian
почти 22 года назад
eject 2.0.10, when installed setuid on systems such as SuSE Linux 7.3, ...
EPSS
Процентиль: 17%
0.00055
Низкий