CVE-2001-0139

Опубликовано: 12 мар. 2001

Источник: nvd

CVSS2: 1.2

EPSS Низкий

Описание

inn 2.2.3 allows local users to overwrite arbitrary files via a symlink attack in some configurations.

Ссылки

http://marc.info/?l=bugtraq&m=97916374410647&w=2
http://www.calderasystems.com/support/security/advisories/CSSA-2001-001.0.txt
Vendor Advisory
http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-010.php3
Patch
Vendor Advisory
http://www.securityfocus.com/bid/2190
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/5916
http://marc.info/?l=bugtraq&m=97916374410647&w=2
http://www.calderasystems.com/support/security/advisories/CSSA-2001-001.0.txt
Vendor Advisory
http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-010.php3
Patch
Vendor Advisory
http://www.securityfocus.com/bid/2190
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/5916

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:caldera:openlinux_desktop:2.3:*:*:*:*:*:*:*

cpe:2.3:a:immunix:immunix:7.0_beta:*:*:*:*:*:*:*

Конфигурация 2

Одно из

cpe:2.3:o:caldera:openlinux_edesktop:2.4:*:*:*:*:*:*:*

cpe:2.3:o:caldera:openlinux_eserver:2.3:*:*:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:2.2:*:*:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:2.2:*:68k:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:2.2:*:alpha:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:2.2:*:arm:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:2.2:*:sparc:*:*:*:*:*

cpe:2.3:o:mandrakesoft:mandrake_linux:6.0:*:*:*:*:*:*:*

cpe:2.3:o:mandrakesoft:mandrake_linux:6.1:*:*:*:*:*:*:*

cpe:2.3:o:mandrakesoft:mandrake_linux:7.0:*:*:*:*:*:*:*

cpe:2.3:o:mandrakesoft:mandrake_linux:7.1:*:*:*:*:*:*:*

cpe:2.3:o:mandrakesoft:mandrake_linux:7.2:*:*:*:*:*:*:*

cpe:2.3:o:redhat:linux:7.0:*:*:*:*:*:*:*

EPSS

Процентиль: 23%

0.00076

Низкий

1.2 Low

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-xr55-38cx-p982

github

больше 3 лет назад