exploitDog

CVE-2001-0300

Опубликовано: 02 июн. 2001

Источник: nvd

CVSS2: 2.1

EPSS Низкий

Описание

oidldapd 2.1.1.1 in Oracle 8.1.7 records log files in a directory (ldaplog) that has world-writable permissions, which may allow local users to delete logs and/or overwrite other files via a symlink attack.

Ссылки

http://archives.neohapsis.com/archives/bugtraq/2000-12/0434.html
Patch
Vendor Advisory
http://www.kb.cert.org/vuls/id/610904
US Government Resource
https://exchange.xforce.ibmcloud.com/vulnerabilities/5804
http://archives.neohapsis.com/archives/bugtraq/2000-12/0434.html
Patch
Vendor Advisory
http://www.kb.cert.org/vuls/id/610904
US Government Resource
https://exchange.xforce.ibmcloud.com/vulnerabilities/5804

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:oracle:internet_directory:2.1.1.1:*:*:*:*:*:*:*

EPSS

Процентиль: 69%

0.00593

Низкий

2.1 Low

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-ppp2-whvv-q4qx

github

почти 4 года назад

oidldapd 2.1.1.1 in Oracle 8.1.7 records log files in a directory (ldaplog) that has world-writable permissions, which may allow local users to delete logs and/or overwrite other files via a symlink attack.

EPSS

Процентиль: 69%

0.00593

Низкий

2.1 Low

CVSS2

Дефекты

NVD-CWE-Other