CVE & Exploit Intelligence Database

CVE-2002-1696 5.5 MEDIUM EPSS 0.00

Microsoft Outlook plug-in PGP version 7.0, 7.0.3, and 7.0.4 silently saves a decrypted copy of a message to hard disk when "Automatically decrypt/verify when opening messages" option is checked, "Always use Secure Viewer when decrypting" option is not checked, and the user replies to an encrypted message.

CWE-312 Dec 31, 2002

CVE-2002-1713 5.5 MEDIUM EPSS 0.00

The Standard security setting for Mandrake-Security package (msec) in Mandrake 8.2 installs home directories with world-readable permissions, which could allow local users to read other user's files.

CWE-276 Dec 31, 2002

CVE-2002-1739 5.5 MEDIUM EPSS 0.00

Alt-N Technologies Mdaemon 5.0 through 5.0.6 uses a weak encryption algorithm to store user passwords, which allows local users to crack passwords.

CWE-326 Dec 31, 2002

CVE-2002-1915 5.5 MEDIUM EPSS 0.00

tip on multiple BSD-based operating systems allows local users to cause a denial of service (execution prevention) by using flock() to lock the /var/log/acculog file.

CWE-667 Dec 31, 2002

CVE-2002-1946 5.5 MEDIUM EPSS 0.00

Videsh Sanchar Nigam Limited (VSNL) Integrated Dialer Software 1.2.000, when the "Save Password" option is used, stores the password with a weak encryption scheme (one-to-one mapping) in a registry key, which allows local users to obtain and decrypt the password.

CWE-326 Dec 31, 2002

CVE-2002-1975 5.5 MEDIUM EPSS 0.00

Sharp Zaurus PDA SL-5000D and SL-5500 uses a salt of "A0" to encrypt the screen-locking password as stored in the Security.conf file, which makes it easier for local users to guess the password via brute force methods.

CWE-326 Dec 31, 2002

CVE-2002-2024 5.3 MEDIUM EPSS 0.00

Horde IMP 2.2.7 allows remote attackers to obtain the full web root pathname via an HTTP request for (1) poppassd.php3, (2) login.php3?reason=chpass2, (3) spelling.php3, and (4) ldap.search.php3?ldap_serv=nonsense which leaks the information in error messages.

CWE-219 Dec 31, 2002

CVE-2002-1914 5.5 MEDIUM EPSS 0.00

dump 0.4 b10 through b29 allows local users to cause a denial of service (execution prevention) by using flock() to lock the /etc/dumpdates file.

CWE-667 Dec 31, 2002

CVE-2002-0725 5.5 MEDIUM EPSS 0.01

NTFS file system in Windows NT 4.0 and Windows 2000 SP2 allows local attackers to hide file usage activities via a hard link to the target file, which causes the link to be recorded in the audit trail instead of the target file.

CWE-59 Sep 05, 2002

CVE-2002-0788 5.5 MEDIUM EPSS 0.00

An interaction between PGP 7.0.3 with the "wipe deleted files" option, when used on Windows Encrypted File System (EFS), creates a cleartext temporary files that cannot be wiped or deleted due to strong permissions, which could allow certain local users or attackers with physical access to obtain cleartext information.

CWE-459 Aug 12, 2002

CVE-2002-0793 5.5 MEDIUM 3 PoCs Analysis EPSS 0.00

Hard link and possibly symbolic link following vulnerabilities in QNX RTOS 4.25 (aka QNX4) allow local users to overwrite arbitrary files via (1) the -f argument to the monitor utility, (2) the -d argument to dumper, (3) the -c argument to crttrap, or (4) using the Watcom sample utility.

CWE-59 Aug 12, 2002

CVE-2001-1494 5.5 MEDIUM EPSS 0.00

script command in the util-linux package before 2.11n allows local users to overwrite arbitrary files by setting a hardlink from the typescript log file to any file on the system, then having root execute the script command.

CWE-59 Dec 31, 2001

CVE-2001-1533 5.3 MEDIUM EPSS 0.27

Microsoft Internet Security and Acceleration (ISA) Server 2000 allows remote attackers to cause a denial of service via a flood of fragmented UDP packets. NOTE: the vendor disputes this issue, saying that it requires high bandwidth to exploit, and the server does not experience any instability. Therefore this "laws of physics" issue might not be included in CVE

Dec 31, 2001

CVE-2001-1559 5.5 MEDIUM 1 PoC Analysis EPSS 0.00

The uipc system calls (uipc_syscalls.c) in OpenBSD 2.9 and 3.0 provide user mode return instead of versus rval kernel mode values to the fdrelease function, which allows local users to cause a denial of service and trigger a null dereference.

CWE-476 Dec 31, 2001

CVE-2000-1198 5.5 MEDIUM 1 PoC Analysis EPSS 0.00

qpopper POP server creates lock files with predictable names, which allows local users to cause a denial of service for other users (lack of mail access) by creating lock files for other mail boxes.

CWE-667 Aug 31, 2001

CVE-2001-0682 5.5 MEDIUM EPSS 0.00

ZoneAlarm and ZoneAlarm Pro allows a local attacker to cause a denial of service by running a trojan to initialize a ZoneAlarm mutex object which prevents ZoneAlarm from starting.

CWE-667 Aug 29, 2001

CVE-2001-1391 5.5 MEDIUM EPSS 0.00

Off-by-one vulnerability in CPIA driver of Linux kernel before 2.2.19 allows users to modify kernel memory.

CWE-193 Apr 17, 2001

CVE-2000-1178 5.5 MEDIUM EPSS 0.00

Joe text editor follows symbolic links when creating a rescue copy called DEADJOE during an abnormal exit, which allows local users to overwrite the files of other users whose joe session crashes.

CWE-59 Jan 09, 2001

CVE-2000-0972 5.5 MEDIUM 2 PoCs Analysis EPSS 0.02

HP-UX 11.00 crontab allows local users to read arbitrary files via the -e option by creating a symlink to the target file during the crontab session, quitting the session, and reading the error messages that crontab generates.

CWE-59 Dec 19, 2000

CVE-2000-0552 5.5 MEDIUM 1 PoC Analysis EPSS 0.01

ICQwebmail client for ICQ 2000A creates a world readable temporary file during login and does not delete it, which allows local users to obtain sensitive information.

CWE-459 Jun 06, 2000