ID CVE-2003-0596
Summary FDclone 2.00a, and other versions before 2.02a, creates temporary directories with predictable names and uses them if they already exist, which allows local users to read or modify files of other fdclone users by creating the directory ahead of time.
References
Vulnerable Configurations
  • cpe:2.3:a:fdclone:fdclone:2.00a:*:*:*:*:*:*:*
    cpe:2.3:a:fdclone:fdclone:2.00a:*:*:*:*:*:*:*
CVSS
Base: 3.6 (as of 08-12-2016 - 02:59)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL NONE
cvss-vector via4 AV:L/AC:L/Au:N/C:P/I:P/A:N
refmap via4
confirm http://bugs.debian.org/cgi-bin/bugreport.cgi?archive=no&bug=186219
debian DSA-352
Last major update 08-12-2016 - 02:59
Published 27-08-2003 - 04:00
Back to Top