4.9
CVE-2009-1214
- EPSS 0.34%
- Veröffentlicht 01.04.2009 10:30:00
- Zuletzt bearbeitet 16.06.2026 23:06:47
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
GNU screen 4.0.3 creates the /tmp/screen-exchange temporary file with world-readable permissions, which might allow local users to obtain sensitive session information.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.34% | 0.259 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.9 | 3.9 | 6.9 |
AV:L/AC:L/Au:N/C:C/I:N/A:N
|
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=521123
http://savannah.gnu.org/bugs/?25296
http://www.openwall.com/lists/oss-security/2009/03/25/7
http://www.securityfocus.com/bid/34521
https://bugs.launchpad.net/ubuntu/+source/screen/+bug/315993
https://bugzilla.redhat.com/show_bug.cgi?id=492104
https://exchange.xforce.ibmcloud.com/vulnerabilities/49886