Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-1392

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2002-1392
Last Modified 05 Sep 2008 04:30:28
Published 17 Jan 2003 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2002-1392

Summary

faxspool in mgetty before 1.1.29 uses a world-writable spool directory for outgoing faxes, which allows local users to modify fax transmission privileges.

Vulnerable Systems

Application

  • Gert Doering Mgetty 1.1.29


References

CONFIRM - http://search.alphanet.ch/cgi-bin/search.cgi?msgid=20021125142338.E12094%40greenie.muc.de&max_results=1&type=long&domain=ml-mgetty

XF - mgetty-faxspool-worldwritable-directory(11070)

BID - 7302

REDHAT - RHSA-2003:036

REDHAT - RHSA-2003:008

GENTOO - GLSA-200304-09

CALDERA - CSSA-2003-021.0


Last Updated: 27 May 2016 10:37:18