Lucene search

MitreCVE-2002-2023

HistoryJul 14, 2005 - 4:00 a.m.

CVE-2002-2023

2005-07-1404:00:00

mitre

web.nvd.nist.gov

cve-2002-2023

beep2

information security

vulnerability

nvd

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.7

Confidence

Low

EPSS

Percentile

5.1%

JSON

The get_parameter_from_freqency_source function in beep2 1.0, 1.1 and 1.2, when installed setuid root, allows local users to read arbitrary files via unknown attack vectors.

Affected configurations

Nvd

Node

yamaguchishingo_beep2Match1.0

yamaguchishingo_beep2Match1.0a

yamaguchishingo_beep2Match1.1

yamaguchishingo_beep2Match1.2

VendorProductVersionCPE
yamaguchishingo_beep21.0cpe:2.3:a:yamaguchi:shingo_beep2:1.0:*:*:*:*:*:*:*
yamaguchishingo_beep21.0acpe:2.3:a:yamaguchi:shingo_beep2:1.0a:*:*:*:*:*:*:*
yamaguchishingo_beep21.1cpe:2.3:a:yamaguchi:shingo_beep2:1.1:*:*:*:*:*:*:*
yamaguchishingo_beep21.2cpe:2.3:a:yamaguchi:shingo_beep2:1.2:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
yamaguchi	shingo_beep2	1.0	cpe:2.3:a:yamaguchi:shingo_beep2:1.0:::::::*
yamaguchi	shingo_beep2	1.0a	cpe:2.3:a:yamaguchi:shingo_beep2:1.0a:::::::*
yamaguchi	shingo_beep2	1.1	cpe:2.3:a:yamaguchi:shingo_beep2:1.1:::::::*
yamaguchi	shingo_beep2	1.2	cpe:2.3:a:yamaguchi:shingo_beep2:1.2:::::::*

References

www.kip.iis.toyama-u.ac.jp/~shingo/beep/package/src/beep2-1.2a.tar.gz

www.securityfocus.com/bid/3859

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.7

Confidence

Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2002-2023