CVE-2013-0347

Sažetak

The Gentoo init script for webfs uses world-readable permissions for /var/log/webfsd.log, which allows local users to have unspecified impact by reading the file.

Reference

http://osvdb.org/90585
http://seclists.org/oss-sec/2013/q1/404
http://seclists.org/oss-sec/2013/q1/405
http://seclists.org/oss-sec/2013/q1/415
http://www.securityfocus.com/bid/58126
https://exchange.xforce.ibmcloud.com/vulnerabilities/82356

CVSS

Base:	7.2
Impact:	10.0
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:L/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

29-08-2017 - 01:33

Objavljeno

16-11-2014 - 11:59