exploitDog

CVE-2002-0225

Опубликовано: 16 мая 2002

Источник: nvd

CVSS2: 4.6

EPSS Низкий

Описание

tac_plus Tacacs+ daemon F4.0.4.alpha, originally maintained by Cisco, creates files from the accounting directive with world-readable and writable permissions, which allows local users to access and modify sensitive files.

Ссылки

http://online.securityfocus.com/archive/1/253288
Vendor Advisory
http://www.iss.net/security_center/static/8061.php
Vendor Advisory
http://www.securityfocus.com/bid/4003
Vendor Advisory
http://online.securityfocus.com/archive/1/253288
Vendor Advisory
http://www.iss.net/security_center/static/8061.php
Vendor Advisory
http://www.securityfocus.com/bid/4003
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:cisco:tacacs\+:f4.0.4alpha:*:*:*:*:*:*:*

EPSS

Процентиль: 44%

0.00215

Низкий

4.6 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-wjx2-r83f-rg9w

github

почти 4 года назад

tac_plus Tacacs+ daemon F4.0.4.alpha, originally maintained by Cisco, creates files from the accounting directive with world-readable and writable permissions, which allows local users to access and modify sensitive files.

EPSS

Процентиль: 44%

0.00215

Низкий

4.6 Medium

CVSS2

Дефекты

NVD-CWE-Other