Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0196

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2001-0196
Last Modified 05 Sep 2008 04:23:30
Published 03 May 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-0196

Summary

inetd ident server in FreeBSD 4.x and earlier does not properly set group permissions, which allows remote attackers to read the first 16 bytes of files that are accessible by the wheel group.

Vulnerable Systems

Operating System

  • Freebsd 3.5

  • Freebsd 3.5.1

  • Freebsd 4.1.1

  • Freebsd 4.2


References

BID - 2324

FREEBSD - FreeBSD-SA-01:11

XF - inetd-ident-read-files(6052)

OSVDB - 1753


Last Updated: 27 May 2016 10:36:10