Lucene search
HistoryApr 17, 2008 - 7:05 p.m.
CVE-2008-1877
tss
vulnerability
arbitrary files
nvd
cve-2008-1877
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
6.3 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
5.1%
tss 0.8.1 allows local users to read arbitrary files via the -a parameter, which is processed while tss is running with privileges.
Affected configurations
Node
debiantssMatch0.8.1
ORdebiantssMatch0.8.2
ORdebiantssMatch0.8.3
| CPE | Name | Operator | Version |
|---|---|---|---|
| debian:tss | debian tss | eq | 0.8.1 |
| debian:tss | debian tss | eq | 0.8.2 |
| debian:tss | debian tss | eq | 0.8.3 |
Related
ubuntucve
ubuntucve
CVE-2008-1877
2008-04-17 00:00:00
cvelist
cvelist
CVE-2008-1877
2008-04-17 18:00:00
prion
prion
Code injection
2008-04-17 19:05:00
nvd
nvd
CVE-2008-1877
2008-04-17 19:05:00
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
6.3 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
5.1%
Related for CVE-2008-1877