Lucene search

[email protected]CVE-2001-0310

HistoryJun 02, 2001 - 4:00 a.m.

CVE-2001-0310

2001-06-0204:00:00

[email protected]

web.nvd.nist.gov

cve-2001-0310

freebsd 4.1.1

temporary file names

security-sensitive scripts

nvd

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

6.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

19.7%

JSON

sort in FreeBSD 4.1.1 and earlier, and possibly other operating systems, uses predictable temporary file names and does not properly handle when the temporary file already exists, which causes sort to crash and possibly impacts security-sensitive scripts.

Affected configurations

NVD

Node

freebsdfreebsdMatch3.5.1

freebsdfreebsdMatch4.1.1

CPENameOperatorVersion
freebsd:freebsdfreebsdeq3.5.1
freebsd:freebsdfreebsdeq4.1.1

CPE	Name	Operator	Version
freebsd:freebsd	freebsd	eq	3.5.1
freebsd:freebsd	freebsd	eq	4.1.1

References

ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:13.sort.asc

www.securityfocus.com/bid/3960

exchange.xforce.ibmcloud.com/vulnerabilities/6038

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

6.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

19.7%

JSON

Related for CVE-2001-0310

nvd1 cvelist1 cert1