Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0067

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2001-0067
Last Modified 05 Sep 2008 04:23:11
Published 12 Feb 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2001-0067

Summary

The installation of J-Pilot creates the .jpilot directory with the user's umask, which could allow local attackers to read other users' PalmOS backup information if their umasks are not securely set.

Vulnerable Systems

Application

  • Judd Montgomery Jpilot


References

MANDRAKE - MDKSA-2000:081

XF - jpilot-perms

BUGTRAQ - 20001214 J-Pilot Permissions Vulnerability


Last Updated: 27 May 2016 10:36:07