Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-1000

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2001-1000
Last Modified 05 Sep 2008 04:25:26
Published 07 Sep 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2001-1000

Summary

rlmadmin RADIUS management utility in Merit AAA Server 3.8M, 5.01, and possibly other versions, allows local users to read arbitrary files via a symlink attack on the rlmadmin.help file.

Vulnerable Systems

Application

  • Merit Aaa Radius Server 3.8m

  • Merit Aaa Radius Server 5.01


References

XF - radius-rlmadmin-help-symlink(7096)

BID - 3302

BUGTRAQ - 20010907 rlmadmin v3.8M view file symlink vulnerability


Last Updated: 27 May 2016 10:36:28