Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-1379

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2005-1379
Last Modified 05 Sep 2008 04:48:59
Published 03 May 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-1379

Summary

The LAM runtime environment package (lam-runtime-7.0.6-2mdk) on Mandrake Linux installs the mpi user without a password, which allows local users to gain privileges.

Vulnerable Systems

Application

  • Mandrakesoft Mandrake Lam-runtime 7.0.6.2mdk


References

BID - 13431

BUGTRAQ - 20050428 insecure user account lam-runtime-7.0.6-2mdk rpm


Last Updated: 27 May 2016 10:40:08