Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
1.2
CVSSv2

CVE-2001-1331

Published: 03/05/2001 Updated: 10/09/2008
CVSS v2 Base Score: 1.2 | Impact Score: 2.9 | Exploitability Score: 1.9
VMScore: 107
Vector: AV:L/AC:H/Au:N/C:N/I:P/A:N
Subscribe to Progeny

Vulnerability Summary

mandb in the man-db package prior to 2.3.16-3 allows local users to overwrite arbitrary files via the command line options (1) -u or (2) -c, which do not drop privileges and follow symlinks.

Vulnerable Product Search on Vulmon Subscribe to Product

progeny debian 1.0

debian debian linux 2.2

Vendor Advisories

Debian Security Advisories: DSA-056-1 man-db -- local file overwrite
Ethan Benson found a bug in man-db packages as distributed in Debian GNU/Linux 22 man-db includes a mandb tool which is used to build an index of the manual pages installed on a system When the -u or -c option were given on the command-line to tell it to write its database to a different location it failed to properly drop privileges before crea ...

References

NVD-CWE-Otherhttp://www.debian.org/security/2001/dsa-056http://online.securityfocus.com/advisories/3307http://www.securityfocus.com/bid/2720https://nvd.nist.govhttps://www.debian.org/security/./dsa-056
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27977IMAPlocal usersCVE-2024-32038CVE-2023-49963CVE-2023-22869CVE-2024-31497localCVE-2024-2961
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook