Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0461

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2003-0461
Last Modified 21 Aug 2010 12:16:07
Published 27 Aug 2003 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2003-0461

Summary

/proc/tty/driver/serial in Linux 2.4.x reveals the exact number of characters used in serial links, which could allow local users to obtain potentially sensitive information such as the length of passwords.

Vulnerable Systems

Operating System

  • Redhat Linux 7.1

  • Redhat Linux 7.2

  • Redhat Linux 7.3

  • Redhat Linux 8.0

  • Redhat Linux 9.0


References

REDHAT - RHSA-2003:238

DEBIAN - DSA-423

REDHAT - RHSA-2004:188

DEBIAN - DSA-358

MISC - http://rsbac.dyndns.org/pipermail/rsbac/2002-May/000162.html


Last Updated: 27 May 2016 10:37:56