Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-1970


Vulnerability Score 2.1 2.1
CVE Id CVE-2002-1970
Last Modified 05 Sep 2008 04:31:59
Published 31 Dec 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE



SnortCenter 0.9.5, when configured to push Snort rules, stores the rules in a temporary file with world-readable and world-writable permissions, which allows local users to obtain usernames and passwords for the alert database servers.

Vulnerable Systems


  • Snortcenter 0.9.5


BID - 6109

XF - snortcenter-tmp-file-insecure(10540)

BUGTRAQ - 20021105 SnortCenter 0.9.5 temp file naming problems...

Last Updated: 27 May 2016 10:37:34