2.1

CVE-2003-0501

The /proc filesystem in Linux allows local users to obtain sensitive information by opening various entries in /proc/self before executing a setuid program, which causes the program to fail to change the ownership and permissions of those entries.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version2.6.20.1
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.83% 0.527
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 2.1 3.9 2.9
AV:L/AC:L/Au:N/C:P/I:N/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://www.debian.org/security/2004/dsa-423
Patch
Vendor Advisory
http://www.redhat.com/support/errata/RHSA-2003-198.html
Patch
Vendor Advisory
http://www.debian.org/security/2004/dsa-358
http://www.redhat.com/support/errata/RHSA-2003-238.html
http://marc.info/?l=bugtraq&m=105621758104242
http://www.redhat.com/support/errata/RHSA-2003-239.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A328