| Vulnerability Name: | CVE-2001-0196 (CCN-6052) | ||||||||
| Assigned: | 2001-01-29 | ||||||||
| Published: | 2001-01-29 | ||||||||
| Updated: | 2017-10-10 | ||||||||
| Summary: | inetd ident server in FreeBSD 4.x and earlier does not properly set group permissions, which allows remote attackers to read the first 16 bytes of files that are accessible by the wheel group. | ||||||||
| CVSS v3 Severity: | 5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)
| ||||||||
| CVSS v2 Severity: | 5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
| ||||||||
| Vulnerability Type: | CWE-Other | ||||||||
| Vulnerability Consequences: | Obtain Information | ||||||||
| References: | Source: FREEBSD Type: UNKNOWN FreeBSD-SA-01:11 Source: CCN Type: FreeBSD Security Advisory FreeBSD-SA-01:11 inetd ident server allows remote users to partially read arbitrary wheel-accessible files [REVISED] Source: MITRE Type: CNA CVE-2001-0196 Source: CCN Type: CIAC Information Bulletin L-038 FreeBSD inetd ident Server Vulnerability Source: OSVDB Type: UNKNOWN 1753 Source: CCN Type: OSVDB ID: 1753 FreeBSD inetd wheel Group File Read Source: BID Type: Patch, Vendor Advisory 2324 Source: CCN Type: BID-2324 FreeBSD inetd wheel Group File Read Vulnerability Source: XF Type: UNKNOWN inetd-ident-read-files(6052) Source: XF Type: UNKNOWN inetd-ident-read-files(6052) | ||||||||
| Vulnerable Configuration: | Configuration 1: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||
| BACK | |||||||||