2.1
CVE-2003-1294
- EPSS 0.1%
- Published 31.12.2003 05:00:00
- Last modified 03.04.2025 01:03:51
- Source secalert@redhat.com
- Teams watchlist Login
- Open Login
Xscreensaver before 4.15 creates temporary files insecurely in (1) driver/passwd-kerberos.c, (2) driver/xscreensaver-getimage-video, (3) driver/xscreensaver.kss.in, and the (4) vidwhacker and (5) webcollage screensavers, which allows local users to overwrite arbitrary files via a symlink attack.
Data is provided by the National Vulnerability Database (NVD)
Xscreensaver ≫ Xscreensaver Version4.05_5cl
Xscreensaver ≫ Xscreensaver Version4.05_6
Xscreensaver ≫ Xscreensaver Version4.05_6a
Xscreensaver ≫ Xscreensaver Version4.05_150
Xscreensaver ≫ Xscreensaver Version4.07_2
Xscreensaver ≫ Xscreensaver Version4.08_29135cl
Xscreensaver ≫ Xscreensaver Version4.09_0
Xscreensaver ≫ Xscreensaver Version4.10_4
Xscreensaver ≫ Xscreensaver Version4.10_6
Xscreensaver ≫ Xscreensaver Version4.10_8
Xscreensaver ≫ Xscreensaver Version4.10_15
Xscreensaver ≫ Xscreensaver Version4.11_0
Xscreensaver ≫ Xscreensaver Version4.12_58
Xscreensaver ≫ Xscreensaver Version4.12_62
Xscreensaver ≫ Xscreensaver Version4.14_0
Xscreensaver ≫ Xscreensaver Version4.14_2
Xscreensaver ≫ Xscreensaver Version4.14_4
Xscreensaver ≫ Xscreensaver Version4.14_5
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.1% | 0.282 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 2.1 | 3.9 | 2.9 |
AV:L/AC:L/Au:N/C:N/I:P/A:N
|