Lucene search
HistoryAug 02, 2001 - 4:00 a.m.
CVE-2001-0610
kde
cve-2001-0610
local attack
symlink attack
privilege escalation.
4.6 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
6.5 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
0.4%
kfm as included with KDE 1.x can allow a local attacker to gain additional privileges via a symlink attack in the kfm cache directory in /tmp.
Affected configurations
Node
kdekdeMatch1.x
ORsusesuse_linuxMatch7.0
ORsusesuse_linuxMatch7.0ppc
ORsusesuse_linuxMatch7.0sparc
ORsusesuse_linuxMatch7.0alpha
| CPE | Name | Operator | Version |
|---|---|---|---|
| kde:kde | kde | eq | 1.x |
| suse:suse_linux | suse suse linux | eq | 7.0 |
Related
nvd
nvd
CVE-2001-0610
2001-08-02 04:00:00
cvelist
cvelist
CVE-2001-0610
2001-07-27 04:00:00
cert
cert
KDE KFM creates temporary files insecurely
2001-05-30 00:00:00
4.6 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
6.5 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
0.4%
Related for CVE-2001-0610