ID CVE-2001-0887
Summary xSANE 0.81 and earlier allows local users to modify files of other xSANE users via a symlink attack on temporary files.
References
Vulnerable Configurations
  • cpe:2.3:a:oliver_rauch:xsane:0.81:*:*:*:*:*:*:*
    cpe:2.3:a:oliver_rauch:xsane:0.81:*:*:*:*:*:*:*
CVSS
Base: 1.2 (as of 10-10-2017 - 01:29)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
LOCAL HIGH NONE
Impact
ConfidentialityIntegrityAvailability
NONE PARTIAL NONE
cvss-vector via4 AV:L/AC:H/Au:N/C:N/I:P/A:N
redhat via4
advisories
  • rhsa
    id RHSA-2001:171
  • rhsa
    id RHSA-2001:172
refmap via4
bid 3700
freebsd FreeBSD-SA-01:68
xf xsane-temp-symlink(7714)
Last major update 10-10-2017 - 01:29
Published 15-01-2002 - 05:00
Last modified 10-10-2017 - 01:29
Back to Top