Vulnerability Details CVE-2004-1445
A race condition in nessus-adduser in Nessus 2.0.11 and possibly earlier versions, if the TMPDIR environment variable is not set, allows local users to gain privileges.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 23.0%
CVSS Severity
CVSS v2 Score 3.7
References
- http://secunia.com/advisories/12127/
- http://www.gentoo.org/security/en/glsa/glsa-200408-11.xml
- http://www.nessus.org/nessus_2_0.html
- http://www.securityfocus.com/bid/10784
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16768
- http://secunia.com/advisories/12127/
- http://www.gentoo.org/security/en/glsa/glsa-200408-11.xml
- http://www.nessus.org/nessus_2_0.html
- http://www.securityfocus.com/bid/10784
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16768
Products affected by CVE-2004-1445
-
cpe:2.3:a:nessus:nessus:2.0
-
cpe:2.3:a:nessus:nessus:2.0.1
-
cpe:2.3:a:nessus:nessus:2.0.10
-
cpe:2.3:a:nessus:nessus:2.0.11
-
cpe:2.3:a:nessus:nessus:2.0.2
-
cpe:2.3:a:nessus:nessus:2.0.3
-
cpe:2.3:a:nessus:nessus:2.0.4
-
cpe:2.3:a:nessus:nessus:2.0.5
-
cpe:2.3:a:nessus:nessus:2.0.6
-
cpe:2.3:a:nessus:nessus:2.0.7
-
cpe:2.3:a:nessus:nessus:2.0.8
-
cpe:2.3:a:nessus:nessus:2.0.9
-
cpe:2.3:a:nessus:nessus:2.1.0