CVE-2005-3631

Опубликовано: 22 дек. 2005

Источник: nvd

CVSS2: 4.6

EPSS Низкий

Описание

udev does not properly set permissions on certain files in /dev/input, which allows local users to obtain sensitive data that is entered at the console, such as user passwords.

Ссылки

http://secunia.com/advisories/18193
Patch
Vendor Advisory
http://securitytracker.com/id?1015386
http://www.redhat.com/support/errata/RHSA-2005-864.html
Patch
Vendor Advisory
http://www.securityfocus.com/bid/15994
Patch
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10854
http://secunia.com/advisories/18193
Patch
Vendor Advisory
http://securitytracker.com/id?1015386
http://www.redhat.com/support/errata/RHSA-2005-864.html
Patch
Vendor Advisory
http://www.securityfocus.com/bid/15994
Patch
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10854

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:redhat:enterprise_linux:4.0:*:advanced_server:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux:4.0:*:enterprise_server:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux:4.0:*:workstation:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_desktop:4.0:*:*:*:*:*:*:*

EPSS

Процентиль: 16%

0.00052

Низкий

4.6 Medium

CVSS2

Дефекты

CWE-264

Связанные уязвимости

CVE-2005-3631

ubuntu

около 20 лет назад

udev does not properly set permissions on certain files in /dev/input, which allows local users to obtain sensitive data that is entered at the console, such as user passwords.

CVE-2005-3631

redhat

около 20 лет назад

udev does not properly set permissions on certain files in /dev/input, which allows local users to obtain sensitive data that is entered at the console, such as user passwords.

CVE-2005-3631

debian

около 20 лет назад

udev does not properly set permissions on certain files in /dev/input, ...

GHSA-g35h-r364-qwcm

github

почти 4 года назад

udev does not properly set permissions on certain files in /dev/input, which allows local users to obtain sensitive data that is entered at the console, such as user passwords.

EPSS

Процентиль: 16%

0.00052

Низкий

4.6 Medium

CVSS2

Дефекты

CWE-264