CVE-2003-1379

medium

Description

clarkconnectd in ClarkConnect Linux 1.2 allows remote attackers to obtain sensitive information about the server via the characters (1) A, which reveals the date and time, (2) F, (3) M, which reveals 'ifconfig' information, (4) P, which lists the processes, (5) Y, which reveals the snort log files, or (6) b, which reveals /var/log/messages.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/11419

http://www.securityfocus.com/bid/6934

http://www.securityfocus.com/archive/1/313080

Details

Source: Mitre, NVD

Published: 2003-12-31

Updated: 2017-07-29

Risk Information

CVSS v2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Severity: Medium

CVSS v3

Base Score: 5.3

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Severity: Medium