Vulnerability Details CVE-2002-0849
Linux-iSCSI iSCSI implementation installs the iscsi.conf file with world-readable permissions on some operating systems, including Red Hat Linux Limbo Beta #1, which could allow local users to gain privileges by reading the cleartext CHAP password.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 24.2%
CVSS Severity
CVSS v2 Score 4.6
References
- http://marc.info/?l=bugtraq&m=102882056105806&w=2
- http://marc.info/?l=bugtraq&m=102891036424424&w=2
- http://www.iss.net/security_center/static/9792.php
- http://www.securityfocus.com/bid/5423
- http://marc.info/?l=bugtraq&m=102882056105806&w=2
- http://marc.info/?l=bugtraq&m=102891036424424&w=2
- http://www.iss.net/security_center/static/9792.php
- http://www.securityfocus.com/bid/5423
Products affected by CVE-2002-0849
-
cpe:2.3:a:cisco:iscsi_driver:*