Lucene search
HistoryFeb 13, 2005 - 5:00 a.m.
CVE-2004-1445
security
nessus
race condition
cve-2004-1445
vulnerability
3.7 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:H/Au:N/C:P/I:P/A:P
6.5 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
5.1%
A race condition in nessus-adduser in Nessus 2.0.11 and possibly earlier versions, if the TMPDIR environment variable is not set, allows local users to gain privileges.
Affected configurations
Node
nessusnessusMatch2.0
ORnessusnessusMatch2.0.1
ORnessusnessusMatch2.0.2
ORnessusnessusMatch2.0.3
ORnessusnessusMatch2.0.4
ORnessusnessusMatch2.0.5
ORnessusnessusMatch2.0.6
ORnessusnessusMatch2.0.7
ORnessusnessusMatch2.0.8
ORnessusnessusMatch2.0.9
ORnessusnessusMatch2.0.10
ORnessusnessusMatch2.0.11
ORnessusnessusMatch2.1.0
Related
nessus
nessus
GLSA-200408-11 : Nessus: 'adduser' race condition vulnerability
2004-08-30 00:00:00
gentoo
gentoo
Nessus: "adduser" race condition vulnerability
2004-08-12 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200408-11 (Nessus)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200408-11 (Nessus)
2008-09-24 00:00:00
cvelist
cvelist
CVE-2004-1445
2005-02-13 05:00:00
nvd
nvd
CVE-2004-1445
2004-12-31 05:00:00
3.7 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:H/Au:N/C:P/I:P/A:P
6.5 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
5.1%
Related for CVE-2004-1445