CVE-2003-0618 - Multiple vulnerabilities in suidperl 5.6.1 and earlier allow a local user to obtain sensitive inform

CVE-2003-0618

Summary

Multiple vulnerabilities in suidperl 5.6.1 and earlier allow a local user to obtain sensitive information about files for which the user does not have appropriate permissions.

References

Vulnerable Configurations

cpe:2.3:a:perl:suidperl:*:*:*:*:*:*:*:*
cpe:2.3:a:perl:suidperl:*:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:3.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:3.0:*:*:*:*:*:*:*

CVSS

Base:	2.1 (as of 11-07-2017 - 01:29)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	NONE	NONE

cvss-vector via4

AV:L/AC:L/Au:N/C:P/I:N/A:N

refmap via4

bid	9543
confirm	http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=203426
debian	DSA-431
xf	suidperl-obtain-information(15012)

statements via4

contributor	Mark J Cox
lastmodified	2006-09-19
organization	Red Hat
statement	Red Hat is aware of this issue and is tracking it via the following bug: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=114923 The Red Hat Security Response Team has rated this issue as having low security impact, a future update may address this flaw. More information regarding issue severity can be found here: http://www.redhat.com/security/updates/classification/ This issue does not affect Red Hat Enterprise Linux 4.

Last major update

11-07-2017 - 01:29

Published

04-05-2004 - 04:00

Last modified

11-07-2017 - 01:29