CVE-2001-1322

high

Description

xinetd 2.1.8 and earlier runs with a default umask of 0, which could allow local users to read or modify files that are created by an application that runs under xinetd but does not set its own safe umask.

References

http://www.securityfocus.com/bid/2826

http://www.redhat.com/support/errata/RHSA-2001-075.html

http://www.linuxsecurity.com/advisories/other_advisory-1469.html

http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-055.php3

http://www.iss.net/security_center/static/6657.php

http://www.debian.org/security/2001/dsa-063

http://download.immunix.org/ImmunixOS/7.0/updates/IMNX-2001-70-024-01

http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000404

Details

Source: Mitre, NVD

Published: 2001-07-10

Updated: 2008-09-10

Risk Information

CVSS v2

Base Score: 3.6

Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:N

Severity: Low

CVSS v3

Base Score: 7.1

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Severity: High

Detections

Analytics