Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0378

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2001-0378
Last Modified 10 Sep 2008 03:07:51
Published 27 Jun 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2001-0378

Summary

readline prior to 4.1, in OpenBSD 2.8 and earlier, creates history files with insecure permissions, which allows a local attacker to recover potentially sensitive information via readline history files.

Vulnerable Systems

Operating System

  • Openbsd 2.8


References

CONFIRM - ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.8/common/024_readline.patch

XF - bsd-readline-permissions(6586)

OSVDB - 5680


Last Updated: 27 May 2016 10:36:14